Vulnerabilities > CVE-2007-4314 - Denial-Of-Service vulnerability in Pixlie 1.7

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

pixlie

exploit available

NVD

Published: 2007-08-13

Updated: 2017-09-29

Summary

pixlie.php in Pixlie 1.7 allows remote attackers to trigger the reading and JPEG image processing of files in a remote directory tree via a URL in the root parameter. NOTE: this can be leveraged for traffic amplification or other denial of service.

Vulnerable Configurations

Part	Description	Count
Application	Pixlie Pixlie Pixlie 1.7	1

Exploit-Db

description	Pixlie 1.7 (pixlie.php root) Remote File Disclosure Vulnerability. CVE-2007-4314. Webapps exploit for php platform
file	exploits/php/webapps/4278.txt
id	EDB-ID:4278
last seen	2016-01-31
modified	2007-08-10
platform	php
port
published	2007-08-10
reporter	Rizgar
source	https://www.exploit-db.com/download/4278/
title	Pixlie 1.7 pixlie.php root Remote File Disclosure Vulnerability
type	webapps

References

https://www.exploit-db.com/exploits/4278