5
CVE-2008-7138
- EPSS 1.3%
- Veröffentlicht 01.09.2009 16:30:00
- Zuletzt bearbeitet 16.06.2026 23:03:41
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe Manager in Eye-Fi 1.1.2 generates predictable snonce values based on the time of day, which allows remote attackers to bypass authentication and upload arbitrary images by guessing the snonce.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Eye.Fi ≫ Eye-fi Manager Version1.1.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.3% | 0.666 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
http://secunia.com/advisories/29221
http://www.securityfocus.com/archive/1/489045/100/0/threaded
http://www.securityfocus.com/bid/28085
http://osvdb.org/42719
http://www.informit.com/articles/article.aspx?p=1177111&seqNum=2