|
|||
Rule General Information |
---|
Release Date: | 2016-11-07 | |
Rule Name: | WEB-OTHER Arcserve Unified Data Protection Exportservlet Directory Traversal Vulnerability -4 (CVE-2015-4068) | |
Severity: | ||
CVE ID: | ||
Rule Protection Details |
---|
Description: | Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet. | |
Impact: | An attacker can abtain sensitive information of the target victim, and do malicious actions to gain profits using the information. | |
Affected OS: | Windows | |
Reference: | SecurityFocusBID:74845 |
|
Solutions |
---|
More advisories have been published on the website, please visit for more suggestions: http://documentation.arcserve.com/Arcserve-UDP/Available/V5/ENU/Bookshelf_Files/HTML/Update%204/UDP_Update4_ReleaseNotes.html |