PT-2009-2579 · Kyocera · Kyocera Mita

Published

2009-08-28

Updated

2018-10-11

CVE-2008-7110

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions Kyocera Mita version 3.3.0.1

Description A directory traversal issue exists in the Scanner File Utility, allowing remote attackers to upload files to arbitrary locations by including a .. (dot dot) in a request.

Recommendations For version 3.3.0.1, consider restricting access to the Scanner File Utility until a fix is available, and avoid using the .. (dot dot) sequence in requests to prevent potential exploitation.

Exploit

Fix

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-22

Related Identifiers

CVE-2008-7110

Affected Products

Kyocera Mita

PT-2009-2579 · Kyocera · Kyocera Mita

CVE-2008-7110

Weakness Enumeration

Related Identifiers

Affected Products

References · 7