Computer Security

RemoteDocs R-Viewer multiple security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



RemoteDocs R-Viewer multiple security vulnerabilities
Published:19.09.2007
Source:BUGTRAQ
SecurityVulns ID:8165
Type:client
Level:5/10
Description:Code execution with RDZ files. Information leak.
Affected:REMOTEDOCS : R-Viewer 1.6
CVE:CVE-2007-4751 (RemoteDocs R-Viewer before 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files.)
 CVE-2007-4750 (Unspecified vulnerability in RemoteDocs R-Viewer before 1.6.3768 allows user-assisted remote attackers to execute arbitrary code via a crafted RDZ archive in which the first file has an executable extension.)
Original documentdocumentSYMANTEC, SYMSA-2007-009: RemoteDocs R-Viewer Code Execution and Sensitive Information Disclosure (19.09.2007)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru