Directory traversal vulnerability in the Session Server in Attachmate Verastream Host Integrator (VHI) 6.0 through 7.5 SP 1 HF 1 allows remote attackers to upload and execute arbitrary files via a crafted message.
References
Link | Resource |
---|---|
http://support.attachmate.com/techdocs/2700.html | Vendor Advisory |
http://www.kb.cert.org/vuls/id/436214 | US Government Resource |
http://support.attachmate.com/techdocs/2700.html | Vendor Advisory |
http://www.kb.cert.org/vuls/id/436214 | US Government Resource |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:54
Type | Values Removed | Values Added |
---|---|---|
References | () http://support.attachmate.com/techdocs/2700.html - Vendor Advisory | |
References | () http://www.kb.cert.org/vuls/id/436214 - US Government Resource |
Information
Published : 2013-11-06 15:55
Updated : 2024-11-21 01:54
NVD link : CVE-2013-3626
Mitre link : CVE-2013-3626
CVE.ORG link : CVE-2013-3626
JSON object : View
Products Affected
attachmate
- verastream_host_integrator
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')