CVE-2008-3371

N/A Unknown

Published: July 30, 2008 Modified: April 23, 2026

Description

Directory traversal vulnerability in install/help.php in TalkBack 2.3.5, and other versions before 2.3.6.2, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://securityreason.com/securityalert/4067

Source: cve@mitre.org

http://www.packetstormsecurity.org/0907-exploits/talkback-lfiexec.txt

Source: cve@mitre.org

http://www.scripts.oldguy.us/talkback/release-notes.html

Source: cve@mitre.org

http://www.securityfocus.com/bid/30393

Source: cve@mitre.org

Exploit

http://www.vupen.com/english/advisories/2008/2211/references

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/44018

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6148

Source: cve@mitre.org

https://www.exploit-db.com/exploits/6451

Source: cve@mitre.org

https://www.exploit-db.com/exploits/9095

Source: cve@mitre.org

http://securityreason.com/securityalert/4067