Executive Summary



This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.
Informations
NameCVE-2011-4835First vendor Publication2011-12-14
VendorCveLast vendor Modification2011-12-15

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score7.5Attack RangeNetwork
Cvss Impact Score6.4Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Directory traversal vulnerability in the web interface in HomeSeer HS2 2.5.0.20 allows remote attackers to access arbitrary files via unspecified vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4835

CWE : Common Weakness Enumeration

idName
CWE-22Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1

ExploitDB Exploits

idDescription
2012-03-07HomeSeer HS2 and HomeSeer PRO Multiple Vulnerabilities

OpenVAS Exploits

DateDescription
2011-12-20Name : HomeSeer HS2 Web Interface Multiple Vulnerabilities
File : nvt/secpod_homeseer_hs2_web_interface_mult_vuln.nasl

Open Source Vulnerability Database (OSVDB)

idDescription
77587HomeSeer HS2 Web Interface Traversal Arbitrary File Access

Internal Sources (Detail)

SourceUrl
CERT-VNhttp://www.kb.cert.org/vuls/id/796883

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-10 23:11:57
  • Multiple Updates