|
Description
|
|
Alejandro Hernandez has reported a vulnerability in Blue Coat Reporter, which can be exploited by malicious people to disclose sensitive information.
Certain input is not properly verified before being used to display files. This can be exploited to disclose the contents of arbitrary files via directory traversal sequences.
The vulnerability is reported in version 8.x running on Windows.
|
|
|
|
|
|
Vulnerable Products
|
|
Vulnerable Software:
Blue Coat Reporter 8.x
|
|
|
|
|
|
Solution
|
|
Upgrade to version 9.3.1.1
|
|
|
|
|
|
CVE
|
|
|
|
|
|
|
|
References
|
|
Blue Coat:
https://kb.bluecoat.com/index?page=content&
id=SA60
nitr0us:
http://www.exploit-db.com/exploits/17883/
|
|
|
|
|
|
Vulnerability Manager Detection
|
|
No
|
|
|
|
|
|
IPS Protection
|
|
|
|
|
|
|
