CVE-2008-4346 in TalkBackinfo

Summary

Directory traversal vulnerability in TalkBack 2.3.6 and 2.3.6.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter to comments.php, a different vector than CVE-2008-3371.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservation

09/30/2008

Disclosure

09/30/2008

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
44269	TalkBack comments.php path traversal	22	Proof-of-Concept	Unavailable	CVE-2008-4346

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!