Vulnerability Assessment & Network Security Forums

If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.

Home >> Browse Vulnerability Assessment Database >> Denial of Service >> ShowOff! Digital Media Software <= 1.5.4 Multiple Remote Vulnerabilities

Vulnerability Assessment Details

ShowOff! Digital Media Software <= 1.5.4 Multiple Remote Vulnerabilities
Vulnerability Assessment Summary
Checks for multiple remote vulnerabilities in ShowOff! Digital Media Software <= 1.5.4

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote web server is affected by multiple issues.

Description :

The version of ShowOff! Digital Media Software installed on the remote
host suffers from multiple vulnerabilities:

- A Denial of Service Vulnerability
If Picture Submissions has been enabled (it is off by
default), a possible hacker can cause the software to stop
listening for requests by sending a malformed request
to the upload port for picture submissions (port 8083
by default).

- Multiple Directory Traversal Vulnerabilities
A possible hacker can retrieve files outside the configured
web document root, potentially resulting in the
disclosure of sensitive information.

See also :

http://secunia.com/advisories/15300

Solution :

Unknown at this time.

Network Security Threat Level:

Low / CVSS Base Score : 3
(AV:R/AC:L/Au:NR/C:C/A:N/I:N/B:N)

Networks Security ID: 13598

Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2006 Tenable Network Security
Cables, Connectors


Juniper SRX650 VPN Firewall Security Hub SRX650-BASE-SRE6-645AP w/SRX-GP-IM picture

Juniper SRX650 VPN Firewall Security Hub SRX650-BASE-SRE6-645AP w/SRX-GP-IM

$99.99


Juniper MX-MPC2-3D-A Router Card + MIC-3D-4XGE-XFP-A & MIC-3D-20GE-SFP picture

Juniper MX-MPC2-3D-A Router Card + MIC-3D-4XGE-XFP-A & MIC-3D-20GE-SFP

$799.99


Juniper Networks EX3300-48P 48-Port PoE+ 4x SFP+ Network Switch w/ Power Cord picture

Juniper Networks EX3300-48P 48-Port PoE+ 4x SFP+ Network Switch w/ Power Cord

$43.95


Juniper Networks EX4300-48T 48 Port Gigabit 4 QSFP 40G 2xPSU AFO Network Switch picture

Juniper Networks EX4300-48T 48 Port Gigabit 4 QSFP 40G 2xPSU AFO Network Switch

$89.00


Juniper EX4600-40F-AFI 24 SFP+/SFP Ports 4 QSFP+ Ports Dual AC Switch picture

Juniper EX4600-40F-AFI 24 SFP+/SFP Ports 4 QSFP+ Ports Dual AC Switch

$999.00


Juniper QFX5100-48S-3AFO Switch 48 x 10Gb SFP+, 6x QSFP 40GE, Dual AC Power picture

Juniper QFX5100-48S-3AFO Switch 48 x 10Gb SFP+, 6x QSFP 40GE, Dual AC Power

$499.00


JUNIPER EX3400-48P 48x 1GB PoE+ RJ-45 4x 10GB SFP+ 2x 40GB QSFP+, DUAL AC POWER picture

JUNIPER EX3400-48P 48x 1GB PoE+ RJ-45 4x 10GB SFP+ 2x 40GB QSFP+, DUAL AC POWER

$210.00


Juniper EX3300-48P, 48 Port PoE+ Gigabit Network Switch w/ Power cord picture

Juniper EX3300-48P, 48 Port PoE+ Gigabit Network Switch w/ Power cord

$54.99


JUNIPER EX4550-32F-AFO 32-PORT ETHERNET SWITCH 2x POWER SUPPLY - TESTED picture

JUNIPER EX4550-32F-AFO 32-PORT ETHERNET SWITCH 2x POWER SUPPLY - TESTED

$299.99


Juniper Networks EX3300 EX3300-48P 48-Port Gigabit PoE+ Switch picture

Juniper Networks EX3300 EX3300-48P 48-Port Gigabit PoE+ Switch

$40.23


Discussions

No Discussions have been posted on this vulnerability.