CVE-2014-0805

Sažetak

Directory traversal vulnerability in the NeoFiler application 5.4.3 and earlier, NeoFiler Free application 5.4.3 and earlier, and NeoFiler Lite application 2.4.2 and earlier for Android allows attackers to overwrite or create arbitrary files via unspecified vectors.

Reference

http://jvn.jp/en/jp/JVN85716574/index.html
http://jvndb.jvn.jp/jvndb/JVNDB-2014-000004
http://www.skyarts.com/products/android/neofiler/index.html
https://play.google.com/store/apps/details?id=com.skyarts.android.neofiler
https://play.google.com/store/apps/details?id=com.skyarts.android.neofilerfree
https://play.google.com/store/apps/details?id=com.skyarts.android.neofilerlite

CVSS

Base:	5.8
Impact:	4.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:P

Zadnje važnije ažuriranje

14-01-2014 - 04:49

Objavljeno

12-01-2014 - 18:34