|
|
|||
Release Date:2016/07/04
Attack Name:EXPLOIT HP Data Protector Opcode 1091 Directory Traversal -2 (CVE-2014-5160)
Severity:
BUG ID:
CVE ID:
| Description:
|
The vulnerability is due to a lack of input sanitization on a file name provided with Opcode 1091. The file name is not sanitized for directory traversal characters, allowing an attacker to create arbitrary files.
Impact:Information disclosure
Affected System:Windows
Additional References:CVE-2014-5160
| Solution:
|
Update vendor's patch.