|
|||
Rule General Information |
---|
Release Date: | 2014-05-23 | |
Rule Name: | EMC CMCNE FileUploadController Information Disclosure Vulnerability (CVE-2014-2276) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | An information disclosure vulnerability exists in EMC Connectrix Manager Converged Network Edition. The vulnerability is due to insufficient input validation in the FileUploadController servlet when processing certain HTTP requests. | |
Impact: | The attacker can disclose the contents of arbitrary files on the local filesystem. | |
Affected OS: | Windows | |
Reference: | CVE-2014-2276 |
|
Solutions |
---|
Update vendor's patch. |