CVE-2007-1035
N/A
N/A
Summary
Unspecified vulnerability in certain demonstration scripts in getID3 1.7.1, as used in the Mediafield and Audio modules for Drupal, allows remote attackers to read and delete arbitrary files, list arbitrary directories, and write to empty files or .mp3 files via unknown vectors.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32542
- http://www.vupen.com/english/advisories/2007/0635
- http://www.securityfocus.com/bid/22587
- http://drupal.org/node/119385
- http://blamcast.net/articles/highly-critical-security-flaws-in-drupal-audio-module
- http://osvdb.org/35161
References
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32542
- http://www.vupen.com/english/advisories/2007/0635
- http://www.securityfocus.com/bid/22587
- http://drupal.org/node/119385
- http://blamcast.net/articles/highly-critical-security-flaws-in-drupal-audio-module
- http://osvdb.org/35161
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.