ET – Chat Multiple Arbitrary File Upload Vulnerabilities

Summary

The ET – Chat is prone to multiple vulnerabilities that lets attackers upload arbitrary files. The issues occur because the application fails to adequately sanitize user-supplied input.

Credit:

The original article can be found at: http://www.securityfocus.com/bid/53928
The information has been provided by FarbodEZRaeL.


Details

Vulnerable Systems:
 * ET – Chat

An attacker may leverage these issues to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.

Vendor Status:Disclosure Timeline:
Initial Release : Jun 12 2012

Categories: News