Vulnerabilities > CVE-2008-7109 - Incorrect Authorization vulnerability in Kyoceramita Scanner File Utility 3.3.0.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 allows remote attackers to bypass authorization and upload arbitrary files to the client system via a modified program that does not prompt the user for a password.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Common Weakness Enumeration (CWE)
References
- http://secunia.com/advisories/31631
- http://secunia.com/advisories/31631
- http://www.informit.com/guides/content.aspx?g=security&seqNum=320
- http://www.informit.com/guides/content.aspx?g=security&seqNum=320
- http://www.securityfocus.com/archive/1/495772/100/0/threaded
- http://www.securityfocus.com/archive/1/495772/100/0/threaded
- http://www.securityfocus.com/bid/30855
- http://www.securityfocus.com/bid/30855
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44717
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44717
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53004
- https://exchange.xforce.ibmcloud.com/vulnerabilities/53004