The Manager in Eye-Fi 1.1.2 generates predictable snonce values based on the time of day, which allows remote attackers to bypass authentication and upload arbitrary images by guessing the snonce.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2009-09-01T16:00:00
Updated: 2018-10-11T19:57:01
Reserved: 2009-09-01T00:00:00
Link: CVE-2008-7138
JSON object: View
NVD Information
Status : Modified
Published: 2009-09-01T16:30:00.377
Modified: 2018-10-11T20:58:21.347
Link: CVE-2008-7138
JSON object: View
Redhat Information
No data.
CWE