CVE-2008-3737

Properties

Published:
26.08.2008
Updated:
29.08.2008
Patch available:
Severity:
High
CVSS vector:
(AV:N/AC:L/Au:N/C:C/I:C/A:C)
Product:
spacetag: lacoodast

Vulnerability description

Unspecified vulnerability in (1) System Consultants La!Cooda WIZ 1.4.0 and earlier and (2) SpaceTag LacoodaST 2.1.3 and earlier allows remote attackers to execute arbitrary PHP scripts, and delete files, read files, and possibly have unknown other impact.

References:

http://jvn.jp/en/jp/JVN53886050/index.html: http://jvn.jp/en/jp/JVN53886050/index.html
http://wiz.syscon.co.jp/Details.htm: http://wiz.syscon.co.jp/Details.htm
BID: http://www.securityfocus.com/bid/30791
SECUNIA: http://secunia.com/advisories/31574
SECUNIA: http://secunia.com/advisories/31582
XF: http://xforce.iss.net/xforce/xfdb/44594