CVE Record: CVE-2014-7226

Required CVE Record Information

Description

The file comment feature in Rejetto HTTP File Server (hfs) 2.3c and earlier allows remote attackers to execute arbitrary code by uploading a file with certain invalid UTF-8 byte sequences that are interpreted as executable macro symbols.

Product Status

Learn more

Information not provided

References 4 Total

securityfocus.com: 70216
external site
vdb-entry
http://packetstormsecurity.com/files/128532/HTTP-File-Server-2.3a-2.3b-2.3c-Remote-Command-Execution.html
external site
exploit-db.com: 34852
external site
exploit
http://www.rejetto.com/forum/hfs-~-http-file-server/new-version-2-3d/
external site

Updated: 2024-08-06

This container includes required additional information provided by the CVE Program for this vulnerability.

References 4 Total

securityfocus.com: 70216
external site
vdb-entryx_transferred
http://packetstormsecurity.com/files/128532/HTTP-File-Server-2.3a-2.3b-2.3c-Remote-Command-Execution.html
external site
x_transferred
exploit-db.com: 34852
external site
exploitx_transferred
http://www.rejetto.com/forum/hfs-~-http-file-server/new-version-2-3d/
external site
x_transferred

Common vulnerabilities and Exposures (CVE)

Required CVE Record Information

CNA: MITRE Corporation

Description

Product Status

References 4 Total

CVE Program

References 4 Total