Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4991

Overview

Vulnerability Score 8.5 8.5
CVE Id CVE-2012-4991
Last Modified 13 Dec 2012 12:00:00
Published 13 Dec 2012 06:53:33
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2012-4991

Summary

Multiple directory traversal vulnerabilities in Axway SecureTransport 5.1 SP2 and earlier allow remote authenticated users to (1) read, (2) delete, or (3) create files, or (4) list directories, via a ..%5C (encoded dot dot backslash) in a URI.

Vulnerable Systems

Application

  • Axway Securetransport 5.1


References

EXPLOIT-DB - 23324


Last Updated: 27 May 2016 10:53:46