Computer Security
[EN] securityvulns.ru no-pyccku


EMC HomeBase Server directory traversal
Published:25.02.2010
Source:
SecurityVulns ID:10646
Type:remote
Threat Level:
6/10
Description:Directory traversal via SSL services.
Affected:EMC : HomeBase Server 6.2
 EMC : HomeBase Server 6.3
CVE:CVE-2010-0620 (Directory traversal vulnerability in the SSL Service in EMC HomeBase Server 6.2.x before 6.2.3 and 6.3.x before 6.3.2 allows remote attackers to overwrite arbitrary files with any content, and consequently execute arbitrary code, via a .. (dot dot) in an unspecified parameter.)
Original documentdocumentEMC, ESA-2010-003: EMC HomeBase Server Arbitrary File Upload Vulnerability (25.02.2010)
 documentZDI, ZDI-10-020: EMC HomeBase SSL Service Arbitrary File Upload Remote Code Execution Vulnerability (25.02.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod