CVE-2016-4004

Directory traversal vulnerability in Dell OpenManage Server Administrator (OMSA) 8.2 allows remote authenticated administrators to read arbitrary files via a ..\ (dot dot backslash) in the file parameter to ViewFile.
Configurations

Configuration 1 (hide)

cpe:2.3:a:dell:openmanage_server_administrator:8.2:*:*:*:*:*:*:*

History

21 Nov 2024, 02:51

Type Values Removed Values Added
References () http://www.securitytracker.com/id/1035564 - () http://www.securitytracker.com/id/1035564 -
References () https://www.exploit-db.com/exploits/39486/ - Exploit () https://www.exploit-db.com/exploits/39486/ - Exploit

Information

Published : 2016-04-12 17:59

Updated : 2024-11-21 02:51


NVD link : CVE-2016-4004

Mitre link : CVE-2016-4004

CVE.ORG link : CVE-2016-4004


JSON object : View

Products Affected

dell

  • openmanage_server_administrator
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')