SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2008-5315

Directory traversal vulnerability in the web interface in Apple iPhone Configuration Web Utility 1.0 on Windows allows remote attackers to read arbitrary files via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.8
Exploit Score: 10.0
Impact Score: 6.9

CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: NONE
Availability: NONE

Reference:

http://www.securityfocus.com/archive/1/498559/100/0/threaded

http://lists.grok.org.uk/pipermail/full-disclosure/2008-November/065822.html

http://archives.neohapsis.com/archives/bugtraq/2008-12/0061.html

BID-32412

SECUNIA-32852

SREASON-4681

iphone-utility-httpget-dir-traversal(46807)


30430



423868



247768



909



194555



282