Drupal Audio And MediaField Modules GetID3 Remote Command Execution Vulnerability

Bugtraq ID: 22587
Class: Input Validation Error
CVE: CVE-2007-1035
Remote: Yes
Local: No
Published: Feb 16 2007 12:00AM
Updated: May 12 2015 07:34PM
Credit: John Forsythe is credited with the discovery of this vulnerability.
Vulnerable: Drupal Mediafield Module 5.x-1.x-dev
Drupal Mediafield Module 4.7.x-1 .x-dev
Drupal getID3 Library 1.7.1
Drupal Audio Module 5.x-0.x-dev
Drupal Audio Module 5.x-0.2
Drupal Audio Module 4.7.x-1 .x-dev
Not Vulnerable: Drupal Mediafield Module 5.x-1.0
Drupal Mediafield Module 4.7.x-1 .0
Drupal Audio Module 5.x-0.3


Privacy Statement
Copyright 2010, SecurityFocus