Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-100015

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2014-100015
Last Modified 14 Jan 2015 02:47:04
Published 13 Jan 2015 10:59:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2014-100015

Summary

Directory traversal vulnerability in pdmwService.exe in SolidWorks Workgroup PDM 2014 allows remote attackers to write to arbitrary files via a .. (dot dot) in the filename in a file upload.

Vulnerable Systems

Application

  • Solidworks Product Data Management 2014


References

XF - workgroup-pdm-dir-traversal(91518)

EXPLOIT-DB - 32163

EXPLOIT-DB - 31831

MISC - http://packetstormsecurity.com/files/125361


Last Updated: 27 May 2016 11:07:32