CyberSec.Space Logo
CVEブラウザに戻る

CVE-2008-4188

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0290%
EPSS Percentile10.13th
Published2008年9月23日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in the TYPO3 Secure Directory (kw_secdir) extension before 1.0.2 allows remote attackers to execute arbitrary code via unknown vectors related to "injection of control characters."

Affected Platforms (CPE)

📦
Typo3

Secure Directory

<= 1.0.1
📦
Typo3

Secure Directory

= 0.1.3
📦
Typo3

Secure Directory

= 1.0.0

References & Advisories

🔗 http://secunia.com/advisories/31897
🔗 http://typo3.org/extensions/repository/view/kw_secdir/1.0.2/
🔗 http://www.securityfocus.com/bid/31253
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45260
🔗 http://secunia.com/advisories/31897
🔗 http://typo3.org/extensions/repository/view/kw_secdir/1.0.2/
🔗 http://www.securityfocus.com/bid/31253
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/45260

関連する脆弱性情報

CVE-2004-077110.0

Buffer overflow in the extract_one function from lhext.c in LHA may allow attackers to execute arbitrary code via a long w (workin...

CVE-2017-234310.0

The Integrated User Firewall (UserFW) feature was introduced in Junos OS version 12.1X47-D10 on the Juniper SRX Series devices to ...

CVE-2021-3770510.0

OneFuzz is an open source self-hosted Fuzzing-As-A-Service platform. Starting with OneFuzz 2.12.0 or greater, an incomplete author...

CVE-2005-169310.0

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, e...