Drupal Audio And MediaField Modules GetID3 Remote Command Execution Vulnerability

Bugtraq ID: 22587
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Feb 16 2007 12:00AM
Updated: Feb 20 2007 10:36PM
Credit: John Forsythe is credited with the discovery of this vulnerability.
Vulnerable: Drupal Mediafield Module 5.x-1.x-dev
Drupal Mediafield Module 4.7.x-1 .x-dev
Drupal getID3 Library 1.7.1
Drupal Audio Module 5.x-0.x-dev
Drupal Audio Module 5.x-0.2
Drupal Audio Module 4.7.x-1 .x-dev
Not Vulnerable: Drupal Mediafield Module 5.x-1.0
Drupal Mediafield Module 4.7.x-1 .0
Drupal Audio Module 5.x-0.3


 

Privacy Statement
Copyright 2010, SecurityFocus