PT-2011-2553 · Lomtec · Lomtec Activeweb Professional

Stenoplasma

Published

2011-01-28

Updated

2017-08-17

CVE-2011-0678

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Lomtec ActiveWeb Professional version 3.0

Description The issue concerns an unrestricted file upload vulnerability in the EasyEdit module. This allows remote attackers to execute arbitrary code by uploading an executable file. The vulnerability is exploited through the UploadDirectory and Accepted Extensions fields in the getImagefile component of EasyEdit.cfm.

Recommendations For Lomtec ActiveWeb Professional version 3.0, restrict access to the UploadDirectory field and limit the Accepted Extensions in the getImagefile component of EasyEdit.cfm to prevent uploading of executable files. Consider disabling the EasyEdit module until a proper fix is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2011-0678

Affected Products

Lomtec Activeweb Professional

PT-2011-2553 · Lomtec · Lomtec Activeweb Professional

CVE-2011-0678

Related Identifiers

Affected Products

References · 9