ID de Prueba:	1.3.6.1.4.1.25623.1.0.805643
Categoría:	Web application abuses
Título:	NetCharts Server Multiple Vulnerabilities
Resumen:	NetCharts Server is prone to multiple vulnerabilities.
Descripción:	Summary: NetCharts Server is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws exist due to: - The projectContents.jsp script in developer tools does not properly verify or sanitize user-uploaded files. - The saveFile.jsp script in developer installation not properly sanitizing user input, specifically path traversal style attacks Vulnerability Impact: Successful exploitation will allow remote attackers to write to arbitrary files via unspecified vectors, rename files and execute arbitrary PHP code. Affected Software/OS: Visual Mining NetChart Server Solution: As a workaround restrict interaction with the service to trusted machines. Only the clients and servers that have a legitimate procedural relationship with the service should be permitted to communicate with it. CVSS Score: 10.0 CVSS Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2015-4031 BugTraq ID: 74792 http://www.securityfocus.com/bid/74792 http://www.zerodayinitiative.com/advisories/ZDI-15-237/ Common Vulnerability Exposure (CVE) ID: CVE-2015-4032 BugTraq ID: 74788 http://www.securityfocus.com/bid/74788 http://www.zerodayinitiative.com/advisories/ZDI-15-238/
Copyright	Copyright (C) 2015 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.