header-logo
Suggest Exploit
vendor:
WinImage
by:
SecurityFocus
7.5
CVSS
HIGH
Denial-of-Service and Directory-Traversal
20, 22
CWE
Product Name: WinImage
Affected Version From: 8
Affected Version To: 8.1
Patch Exists: YES
Related CWE: N/A
CPE: winimage
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2008

WinImage Denial-of-Service and Directory-Traversal Vulnerabilities

WinImage is prone to a denial-of-service vulnerability and a directory-traversal vulnerability because the application fails to adequately sanitize user-supplied input. Attackers can exploit these issues to cause a denial of service or to write malicious files to arbitrary directories.

Mitigation:

Ensure that user-supplied input is properly sanitized before being used.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25687/info
 
WinImage is prone to a denial-of-service vulnerability and a directory-traversal vulnerability because the application fails to adequately sanitize user-supplied input.
 
Attackers can exploit these issues to cause a denial of service or to write malicious files to arbitrary directories.
 
WinImage 8.0 and 8.10 are vulnerable; other versions may also be affected. 

https://gitlab.com/exploit-database/exploitdb-bin-sploits/-/raw/main/bin-sploits/30590.zip

Navigation

Suggest Exploit

Services By CQR