CVE Vulnerabilities

CVE-2007-1035

Published: Feb 21, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Unspecified vulnerability in certain demonstration scripts in getID3 1.7.1, as used in the Mediafield and Audio modules for Drupal, allows remote attackers to read and delete arbitrary files, list arbitrary directories, and write to empty files or .mp3 files via unknown vectors.

Affected Software

Name Vendor Start Version End Version
Audio_module Drupal * *
Getid3 Drupal 1.7.1 (including) 1.7.1 (including)
Mediafield_module Drupal * *

References