JVN#84335912: File Explorer vulnerable to directory traversal

2014-07-18T00:00:00
ID JVN:84335912
Type jvn
Reporter Japan Vulnerability Notes
Modified 2014-07-18T00:00:00

Description

## Description

File Explorer provided by NextApp, Inc. contains an issue in processing file names, which may result in a directory traversal (CWE-22) vulnerability.

## Impact

A remote, unauthenticated attacker may create an arbitrary file or overwrite an existing file in a directory that the application has privileges to access.

## Solution

Apply an Update
Update to the latest version according to the information provided by the developer.

## Products Affected

  • File Explorer versions prior to 2.1.0.3