Severity: : Low
  Advisory Date: 04 de lutego de 2011

  DESCRIPTION

Kebi Academy 2001 has a vulnerability wherein URI parameter input is not properly validated. The vulnerability can cause malicious user to retrieve and upload random files which are readable to the Web server. This can result to compromise of sensitive information or even execution of commands in context of the Web server.

  INFORMATION EXPOSURE

Users of Trend Micro PC-cillin Internet Security and Network VirusWall can detect this exploit at the network layer with Network Virus Pattern (NVP) 10195 or later.
Download the latest NVW pattern file from the following site:   
http://www.trendmicro.com/download/product.asp?productid=45

  AFFECTED SOFTWARE AND VERSION:

  • Nara Vision Kebi Academy 2001