CVE-2007-1035

N/A Unknown

Published: February 21, 2007 Modified: April 23, 2026

Description

Unspecified vulnerability in certain demonstration scripts in getID3 1.7.1, as used in the Mediafield and Audio modules for Drupal, allows remote attackers to read and delete arbitrary files, list arbitrary directories, and write to empty files or .mp3 files via unknown vectors.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://blamcast.net/articles/highly-critical-security-flaws-in-drupal-audio-module

Source: cve@mitre.org

http://drupal.org/node/119385

Source: cve@mitre.org

Patch Vendor Advisory

http://osvdb.org/35161

Source: cve@mitre.org

http://www.securityfocus.com/bid/22587

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2007/0635

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/32542

Source: cve@mitre.org

http://blamcast.net/articles/highly-critical-security-flaws-in-drupal-audio-module

Source: af854a3a-2127-422b-91ae-364da2661108

http://drupal.org/node/119385

Source: af854a3a-2127-422b-91ae-364da2661108

Patch Vendor Advisory

http://osvdb.org/35161

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/22587

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vupen.com/english/advisories/2007/0635

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/32542

Source: af854a3a-2127-422b-91ae-364da2661108

12 reference(s) from NVD

Quick Stats

CVSS v3 Score

N/A / 10.0

EPSS (Exploit Probability)

1.2%

79th percentile

Exploitation Status

Not in CISA KEV

Affected Vendors

drupal