CVE-2011-4696 Information

Description

Directory traversal vulnerability in Eye-Fi Helper before 3.4.23 allows man-in-the-middle attackers to create arbitrary files via a .. (dot dot) in the filesignature in a GetPhotoStatus request.

Reference

http://www.pentest.co.uk/documents/ptl-2013-01.html http://www.securityfocus.com/bid/57163 https://exchange.xforce.ibmcloud.com/vulnerabilities/80995