Web application abuses : Websense Triton 7.8.3/7.7 Source Code Disclosure Vulnerability

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.106002

Categoría: Web application abuses

Título: Websense Triton 7.8.3/7.7 Source Code Disclosure Vulnerability

Resumen: Websense Triton is prone to a source code disclosure; vulnerability.

Descripción: Summary:
Websense Triton is prone to a source code disclosure
vulnerability.

Vulnerability Insight:
By appending a double quote character after JSP URLs, Websense
will return the source code of the JSP instead of executing the JSP.

Vulnerability Impact:
An attacker can use this vulnerability to inspect parts of
Websense's source code in order to gain more knowledge about Websense's internals.

Affected Software/OS:
Websense Triton v7.8.3 and v7.7.

Solution:
Install the hotfix 02 for version 7.8.4 or update to version
8.0 or later.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:N/A:N

Copyright Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.106002
Categoría:	Web application abuses
Título:	Websense Triton 7.8.3/7.7 Source Code Disclosure Vulnerability
Resumen:	Websense Triton is prone to a source code disclosure; vulnerability.
Descripción:	Summary: Websense Triton is prone to a source code disclosure vulnerability. Vulnerability Insight: By appending a double quote character after JSP URLs, Websense will return the source code of the JSP instead of executing the JSP. Vulnerability Impact: An attacker can use this vulnerability to inspect parts of Websense's source code in order to gain more knowledge about Websense's internals. Affected Software/OS: Websense Triton v7.8.3 and v7.7. Solution: Install the hotfix 02 for version 7.8.4 or update to version 8.0 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Copyright	Copyright (C) 2015 Greenbone AG