CVE-2011-4716
Published Dec 8, 2011
Last updated 11 years ago
Overview
- Description
- Directory traversal vulnerability in file in DreamBox DM800 1.6rc3, 1.5rc1, and earlier allows remote attackers to read arbitrary files via the file parameter.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-22
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dream-multimedia-tv:dreambox_dm800_hd_se_firmware:*:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3699B758-B415-445F-897E-678A77F8F0B4",
"versionEndIncluding": "1.6"
},
{
"criteria": "cpe:2.3:a:dream-multimedia-tv:dreambox_dm800_hd_se_firmware:1.5:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CFCC0B09-C4AA-499E-9377-94275D9DEB03"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dream-multimedia-tv:dreambox_dm800_hd_se:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0434C33A-2861-4168-A899-3F6E43779646"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:dream-multimedia-tv:dreambox_dm800_hd_pvr_firmware:1.5:rc1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B35CED3F-3CAA-4658-9524-3C9696B68F8A"
},
{
"criteria": "cpe:2.3:a:dream-multimedia-tv:dreambox_dm800_hd_pvr_firmware:1.6:rc3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D950453-EFD6-4FDE-B226-68FA95D4BFD4"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:dream-multimedia-tv:dreambox_dm800_hd_pvr:-:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EF380044-DCCD-43D1-9F9A-1BB61ACFF335"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]