CVE-2007-3256 Information

Description

Xythos Enterprise Document Manager (XEDM) Digital Locker (XDL) and possibly WebFile Server before 6.0.46.1 allow remote authenticated users to associate arbitrary Content-Type HTTP headers with documents which might facilitate malware distribution.

Reference

http://osvdb.org/37614 http://secunia.com/advisories/25783 http://securityreason.com/securityalert/2845 http://securitytracker.com/id?1018291 http://securitytracker.com/id?1018292 http://www.securityfocus.com/archive/1/472275/100/0/threaded http://www.securityfocus.com/bid/24521 http://www.symantec.com/content/en/us/enterprise/research/SYMSA-2007-004.txt https://exchange.xforce.ibmcloud.com/vulnerabilities/35086