Vulnerability CVE-2008-0408

Vulnerability CVE-2008-0408

Published: 2008-01-28 Modified: 2012-02-12

Description:

	Topic	Author	Date
Low	HFS (HTTP File Server) Username Spoofing and Log Forging/Injection Vulnerability	Felipe M. Aragon	29.01.2008

Type:

(Improper Authentication)

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.4/10	4.9/10	10/10

Affected software
HFS -> Http file server

http://securityreason.com/securityalert/3582

http://www.rejetto.com/hfs/?f=wn

http://www.securityfocus.com/archive/1/486874/100/0/threaded

http://www.securityfocus.com/bid/27423

http://www.syhunt.com/advisories/hfshack.txt

https://exchange.xforce.ibmcloud.com/vulnerabilities/39876