1. Home
  2. CVE Database
  3. CVE-2008-7093
MEDIUM · 6.8

CVE-2008-7093

Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to (1) create arbitrary directories or files via a .. (dot dot) in the folder name in the new ...

Vulnerability Description

Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to (1) create arbitrary directories or files via a .. (dot dot) in the folder name in the new folder functionality or (2) list arbitrary files via a crafted request to Campaign/CampaignListener.

CVSS Score

6.8

MEDIUM

AV:N/AC:M/Au:N/C:P/I:P/A:P
Confidentiality
PARTIAL
Integrity
PARTIAL
Availability
PARTIAL

Affected Products

VendorProductVersions
UnicaAffinium Campaign7.2.1.0.55

Related Weaknesses (CWE)

CWE-22

References

FAQ

What is CVE-2008-7093?

CVE-2008-7093 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple directory traversal vulnerabilities in Unica Affinium Campaign 7.2.1.0.55 allow remote attackers to (1) create arbitrary directories or files via a .. (dot dot) in the folder name in the new ...

How severe is CVE-2008-7093?

CVE-2008-7093 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2008-7093?

Check the references section above for vendor advisories and patch information. Affected products include: Unica Affinium Campaign.