Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-2535

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2014-2535
Last Modified 01 Apr 2014 02:29:37
Published 18 Mar 2014 01:04:18
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-2535

Summary

Directory traversal vulnerability in McAfee Web Gateway (MWG) 7.4.x before 7.4.1, 7.3.x before 7.3.2.6, and 7.2.0.9 and earlier allows remote authenticated users to read arbitrary files via a crafted request to the web filtering port.

Vulnerable Systems

Application

  • Mcafee Web Gateway 7.2.0.9

  • Mcafee Web Gateway 7.3.2.4

  • Mcafee Web Gateway 7.4.0


References

CONFIRM - https://kc.mcafee.com/corporate/index?page=content&id=SB10063

XF - mcafee-gateway-filtering-dir-traversal(91772)

SECUNIA - 56958

BID - 66193


Last Updated: 27 May 2016 11:04:44