The Scanner File Utility (aka listener) in Kyocera Mita (KM) 3.3.0.1 does not restrict the filenames or extensions of uploaded files, which makes it easier for remote attackers to execute arbitrary code or overwrite files by leveraging CVE-2008-7110 and CVE-2008-7109.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Scanner_file_utility | Kyoceramita | 3.3.0.1 (including) | 3.3.0.1 (including) |