Code injection

2007-05-3123:30:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.157 Low

EPSS

Percentile

96.0%

JSON

The fsmsh.dll host module in F-Secure Policy Manager Server 7.00 and earlier allows remote attackers to cause a denial of service (application crash) via NTFS reserved words in filenames in URLs.

CPENameOperatorVersion
policy_managerle7.00

CPE	Name	Operator	Version
	policy_manager	le	7.00

References

osvdb.org/36723

secunia.com/advisories/25449

www.f-secure.com/security/fsc-2007-4.shtml

www.securityfocus.com/bid/24233

www.securitytracker.com/id?1018149

www.vupen.com/english/advisories/2007/1986

exchange.xforce.ibmcloud.com/vulnerabilities/34584