CVE-2014-5359CVE-2014-5359

Affected configuration(s):

cpe:/a:safenet-inc:safenet_authentication_service_outlook_web_access_agent:1.03.20212

Date published: 2014-12-16T13:59:04.247-05:00

Date last modified: 2014-12-17T14:30:32.603-05:00

CVSS Score: 7.8

Principal attack vector: NETWORK

Complexity:  LOW

Reference URL: http://appcheck-ng.com/safenet-sas-owa-agent-directory-traversal-vulnerability/

Summary: Directory traversal vulnerability in SafeNet Authentication Service (SAS) Outlook Web Access Agent (formerly CRYPTOCard) before 1.03.30109 allows remote attackers to read arbitrary files via a .. (dot dot) in the GetFile parameter to owa/owa.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.