CVE-2011-1409

EPSS 0.68%

fex - authentication bypass

Published: 6/24/2011Modified: 5/10/2026

Description

Frams's Fast File EXchange (F*EX, aka fex) 20100208, and possibly other versions before 20110610, allows remote attackers to bypass authentication and upload arbitrary files via a request that lacks an authentication ID.

Affected packages (2)

Debian/fexfrom 0, < 20110610-1
Debian/fexfrom 0, < 20100208+debian1-1+squeeze1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2011-1409