ID de Prueba:	1.3.6.1.4.1.25623.1.0.100336
Categoría:	Web application abuses
Título:	Sahana 'mod' Parameter Local File Disclosure Vulnerability
Resumen:	Sahana is prone to a local file-disclosure vulnerability because it; fails to adequately validate user-supplied input.
Descripción:	Summary: Sahana is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input. Vulnerability Impact: Sahana 0.6.2.2 is vulnerable. Other versions may also be affected. Affected Software/OS: An attacker can exploit this vulnerability to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks. Solution: Updates are available. Please see the references for details. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2009-3625 36826 http://www.securityfocus.com/bid/36826 [oss-security] 20091022 CVE Request -- Sahana http://www.openwall.com/lists/oss-security/2009/10/22/3 [oss-security] 20091022 Re: CVE Request -- Sahana http://www.openwall.com/lists/oss-security/2009/10/22/6 [sahana-maindev] 20091019 SEVERE Security Vulnerability in Sahana Identified and Patched http://sourceforge.net/mailarchive/forum.php?thread_name=5d9043b70910191044l4bb0178fs563a5128a0f5db01%40mail.gmail.com&forum_name=sahana-maindev http://sahana.cvs.sourceforge.net/viewvc/sahana/sahana-phase2/www/index.php?r1=1.83&r2=1.84 https://bugzilla.redhat.com/show_bug.cgi?id=530255 https://fedorahosted.org/rel-eng/ticket/2635
Copyright	Copyright (C) 2009 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.