메뉴 건너뛰기

GREATUSER

cve

CVE-2017-16609

관리자 2018.01.25 04:00 조회 수 : 188

This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within download.jsp. The issue results from the lack of proper validation of a user-supplied string before using it to download a file. An attacker can leverage this vulnerability to expose sensitive information. Was ZDI-CAN-4750.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-16609
번호 제목 글쓴이 날짜 조회 수
62 CVE-2017-6578 (mail-masta) 관리자 2017.03.10 198
61 CVE-2017-6571 관리자 2017.03.10 162
60 CVE-2017-6577 관리자 2017.03.10 96
59 CVE-2017-6574 관리자 2017.03.10 153
58 CVE-2017-6576 (mail-masta) 관리자 2017.03.10 155
57 CVE-2017-6572 (mail-masta) 관리자 2017.03.10 162
56 CVE-2017-6575 관리자 2017.03.10 156
55 CVE-2017-6570 관리자 2017.03.10 198
54 CVE-2017-6547 관리자 2017.03.10 177
53 CVE-2017-6560 관리자 2017.03.10 176
52 CVE-2017-6562 관리자 2017.03.10 132
51 CVE-2017-6561 (agora-project) 관리자 2017.03.10 160
50 CVE-2017-6559 관리자 2017.03.10 101
49 CVE-2017-6558 관리자 2017.03.10 146
48 CVE-2017-6556 관리자 2017.03.10 162
위로