CVE-2014-9436

2015-01-02T14:59:05
ID CVE-2014-9436
Type cve
Reporter NVD
Modified 2017-09-07T21:29:34

Description

Absolute path traversal vulnerability in SysAid On-Premise before 14.4.2 allows remote attackers to read arbitrary files via a \\ (four backslashes) in the fileName parameter to getRdsLogFile.