Gravité: : Faible
  Date du conseil: 04 février 2011

  Description

Kebi Academy 2001 has a vulnerability wherein URI parameter input is not properly validated. The vulnerability can cause malicious user to retrieve and upload random files which are readable to the Web server. This can result to compromise of sensitive information or even execution of commands in context of the Web server.

  Information Exposure Rating:

Users of Trend Micro PC-cillin Internet Security and Network VirusWall can detect this exploit at the network layer with Network Virus Pattern (NVP) 10195 or later.
Download the latest NVW pattern file from the following site:   
http://www.trendmicro.com/download/product.asp?productid=45

  Affected software and version:

  • Nara Vision Kebi Academy 2001