CVE-2007-5463

ideal_process.php in the iDEAL payment module in ViArt Shop 3.3 beta and earlier might allow remote attackers to obtain the pathname for certificate and key files via an "iDEAL transaction", possibly involving fopen error messages for nonexistent files, a different issue than CVE-2007-5364. NOTE: this can be leveraged for reading certificate or key files if an installation places these files under the web document root.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://www.viart.com/ideal_process_script_fix_for_release_32_and_33_beta.html	Patch
http://secunia.com/advisories/27199	Patch Vendor Advisory
http://www.securityfocus.com/bid/25998
http://securityreason.com/securityalert/3233
http://osvdb.org/40151
https://exchange.xforce.ibmcloud.com/vulnerabilities/37048
http://www.securityfocus.com/archive/1/481978/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:viart:shop:*:*:*:*:*:*:*:*

Information

Published : 2007-10-15 15:17

Updated : 2018-10-15 14:45

NVD link : CVE-2007-5463

Mitre link : CVE-2007-5463

JSON object : View

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Advertisement

Products Affected

viart

shop

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.viart.com/ideal_process_script_fix_for_release_32_and_33_beta.html", "name": "http://www.viart.com/ideal_process_script_fix_for_release_32_and_33_beta.html", "tags": ["Patch"], "refsource": "CONFIRM"}, {"url": "http://secunia.com/advisories/27199", "name": "27199", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securityfocus.com/bid/25998", "name": "25998", "tags": [], "refsource": "BID"}, {"url": "http://securityreason.com/securityalert/3233", "name": "3233", "tags": [], "refsource": "SREASON"}, {"url": "http://osvdb.org/40151", "name": "40151", "tags": [], "refsource": "OSVDB"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/37048", "name": "viart-idealprocess-path-disclosure(37048)", "tags": [], "refsource": "XF"}, {"url": "http://www.securityfocus.com/archive/1/481978/100/0/threaded", "name": "20071010 Regarding vulnerability in ViArt Shop", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "ideal_process.php in the iDEAL payment module in ViArt Shop 3.3 beta and earlier might allow remote attackers to obtain the pathname for certificate and key files via an \"iDEAL transaction\", possibly involving fopen error messages for nonexistent files, a different issue than CVE-2007-5364. NOTE: this can be leveraged for reading certificate or key files if an installation places these files under the web document root."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-22"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-5463", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2007-10-15T22:17Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:viart:shop:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.3_beta"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-15T21:45Z"}