SearchBlox denial of service vulnerability, CVE-2 0 1 5-7 9 1 9-a vulnerability warning-the black bar safety net

2015-12-24T00:00:00
ID MYHACK58:62201570310
Type myhack58
Reporter 佚名
Modified 2015-12-24T00:00:00

Description

Affected system:

SearchBlox SearchBlox 8.3 Description:

CVE(CAN) ID: CVE-2 0 1 5-7 9 1 9

SearchBlox is a Web-based property search engine.

SearchBlox 8.3-8.3.1 version there is a file leakage vulnerabilities, without administrator privileges, the attacker can cause the profile override configuration file, add and delete users.

<source: Oana Murarasu >

Recommendations:

Manufacturers patch:

SearchBlox ---------- The current vendors have released an upgrade patch to fix this security issue, please go to the manufacturers home page download:

http://www.searchblox.com/downloads