Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 22/02/2008 Updated: 08/03/2011

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N

Unspecified vulnerability in the download servlet in BEA Plumtree Collaboration 4.1 through SP2 and AquaLogic Interaction 4.2 through MP1 allows remote malicious users to read arbitrary files via a crafted URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
bea systems plumtree collaboration 4.1_sp2
bea systems aqualogic interaction 4.2
bea systems aqualogic interaction 4.2_mp1
bea systems plumtree collaboration 4.1
bea systems plumtree collaboration 4.1_sp1

CWE-200 http://dev2dev.bea.com/pub/advisory/276 http://www.securitytracker.com/id?1019437 http://secunia.com/advisories/28991 http://osvdb.org/41881 http://www.vupen.com/english/advisories/2008/0607/references https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2008-0904

Vulnerability Summary

References

Vulmon Search

About

Products

Connect