 |
Inicial ▼ Bookkeeping
Online ▼ Auditorias ▼
DNS
Administrado ▼
Acerca de DNS
Ordenar/Renovar
Preguntas Frecuentes
AUP
Dynamic DNS Clients
Configurar Dominios Dynamic DNS Update Password Monitoreo
de Redes ▼
Enterprise
Avanzado
Estándarr
Prueba
Preguntas Frecuentes
Resumen de Precio/Funciones
Ordenar
Muestras
Configure/Status Alert Profiles | ||
| ID de Prueba: | 1.3.6.1.4.1.25623.1.0.103751 |
| Categoría: | Web application abuses |
| Título: | TrustPort WebFilter <= 5.5.0.2232 Arbitrary File Access Vulnerability - Active Check |
| Resumen: | TrustPort WebFilter is prone to an arbitrary file access; vulnerability. |
| Descripción: | Summary: TrustPort WebFilter is prone to an arbitrary file access vulnerability. Vulnerability Insight: A vulnerability exists within the help.php script, allowing a remote attacker to access files outside of the webroot with SYSTEM privileges, without authentication. Vulnerability Impact: An attacker can exploit this issue to read arbitrary files in the context of the web server process, which may aid in further attacks. Affected Software/OS: TrustPort WebFilter version 5.5.0.2232 and probably prior. Solution: Updates are available. CVSS Score: 7.8 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:N/A:N |
| Referencia Cruzada: |
Common Vulnerability Exposure (CVE) ID: CVE-2013-5301 BugTraq ID: 61662 http://www.securityfocus.com/bid/61662 Bugtraq: 20130807 Trustport Webfilter Remote File Access Vulnerability (Google Search) http://archives.neohapsis.com/archives/bugtraq/2013-08/0043.html http://packetstormsecurity.com/files/122735/Trustport-Webfilter-Traversal-File-Disclosure.html XForce ISS Database: trustportwebfilter-help-directory-traversal(86289) https://exchange.xforce.ibmcloud.com/vulnerabilities/86289 |
| Copyright | Copyright (C) 2013 Greenbone AG |
| Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora. |