CVE

Id
26613  
CVE No.
CVE-2007-3256  
Status
Candidate  
Description
Xythos Enterprise Document Manager (XEDM), Digital Locker (XDL), and possibly WebFile Server before 6.0.46.1 allow remote authenticated users to associate arbitrary Content-Type HTTP headers with documents, which might facilitate malware distribution.  
Phase
Assigned (20070619)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
270224 26613 CVE-2007-3256 BUGTRAQ:20070622 SYMSA-2007-004: Multiple Vulnerabilities in Xythos Server Products  View
270225 26613 CVE-2007-3256 URL:http://www.securityfocus.com/archive/1/archive/1/472275/100/0/threaded  View
270226 26613 CVE-2007-3256 MISC:http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-004.txt  View
270227 26613 CVE-2007-3256 BID:24521  View
270228 26613 CVE-2007-3256 URL:http://www.securityfocus.com/bid/24521  View
270229 26613 CVE-2007-3256 OSVDB:37614  View
270230 26613 CVE-2007-3256 URL:http://osvdb.org/37614  View
270231 26613 CVE-2007-3256 SECTRACK:1018291  View
270232 26613 CVE-2007-3256 URL:http://securitytracker.com/id?1018291  View
270233 26613 CVE-2007-3256 SECTRACK:1018292  View
270234 26613 CVE-2007-3256 URL:http://securitytracker.com/id?1018292  View
270235 26613 CVE-2007-3256 SECUNIA:25783  View
270236 26613 CVE-2007-3256 URL:http://secunia.com/advisories/25783  View
270237 26613 CVE-2007-3256 SREASON:2845  View
270238 26613 CVE-2007-3256 URL:http://securityreason.com/securityalert/2845  View
270239 26613 CVE-2007-3256 XF:xedm-contenttype-extension-spoofing(35086)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
57013 JVNDB-2007-005705 Calendarix の calendar.php における重要な情報を取得される脆弱性 Calendarix の calendar.php には、重要な情報を取得される脆弱性が存在します。 CVE-2007-3258 26613 5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-005705.html  View