|
|
|||
| Rule General Information |
|---|
| Release Date: | 2016-11-07 | |
| Rule Name: | WEB-OTHER Arcserve Unified Data Protection Exportservlet Directory Traversal Vulnerability -4 (CVE-2015-4068) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet. | |
| Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
| Affected OS: | Windows | |
| Reference: | SecurityFocusBID:74845 |
|
| Solutions |
|---|
| More advisories have been published on the website, please visit for more suggestions: http://documentation.arcserve.com/Arcserve-UDP/Available/V5/ENU/Bookshelf_Files/HTML/Update%204/UDP_Update4_ReleaseNotes.html |