|
|||
Rule General Information |
---|
Release Date: | 2016-01-05 | |
Rule Name: | Manageengine Multiple Products Failoverhelperservlet Copyfile Information Disclosure Vulnerability -2 (CVE-2014-7863) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | An information disclosure vulnerability was found in ManageEngine OpManager, Applications Manager and IT360. The vulnerability is caused by lacking of authentication and deficient input validation of the a parameter which was sent to FailOverHelperServlet in HTTP requests. | |
Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
Affected OS: | Windows, Linux | |
Reference: | ||
Solutions |
---|
More advisories have been published on the website, please visit for more suggestions: https://support.zoho.com/portal/manageengine/helpcenter/articles/vulnerabilities-in-failoverhelperservlet |