EDB-30809
remotewindowsVERIFIED
SafeNet Sentinel Protection Server 7.x/Keys Server 1.0.3 - Directory Traversal
CVE-2007-6483
Corey Lebleu11/26/2007
描述
Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
AI分析AI驱动
受影响产品
safenetsentinel_keys_server
1.0.3
safenetsentinel_protection_server
7.0
safenetsentinel_protection_server
7.1
safenetsentinel_protection_server
7.2
safenetsentinel_protection_server
7.3
safenetsentinel_protection_server
7.4
可用漏洞利用 (2)
参考资料
- http://safenet-inc.com/support/files/SPI740SecurityPatch.zip
- http://secunia.com/advisories/27811Vendor Advisory
- http://securityreason.com/securityalert/3471
- http://www.securityfocus.com/archive/1/484201/100/200/threaded
- http://www.securityfocus.com/archive/1/484224/100/200/threaded
- http://www.securityfocus.com/bid/26583ExploitPatch
- http://www.securitytracker.com/id?1018992Exploit
- http://www.vupen.com/english/advisories/2007/4011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38636
- https://ics-cert.us-cert.gov/advisories/ICSA-15-272-01
- http://safenet-inc.com/support/files/SPI740SecurityPatch.zip
- http://secunia.com/advisories/27811Vendor Advisory
- http://securityreason.com/securityalert/3471
- http://www.securityfocus.com/archive/1/484201/100/200/threaded
- http://www.securityfocus.com/archive/1/484224/100/200/threaded
- http://www.securityfocus.com/bid/26583ExploitPatch
- http://www.securitytracker.com/id?1018992Exploit
- http://www.vupen.com/english/advisories/2007/4011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/38636
- https://ics-cert.us-cert.gov/advisories/ICSA-15-272-01