2 matches found
CVE-2015-5071
AR System Mid Tier in the AR System Mid Tier component before 9.0 SP1 for BMC Remedy AR System Server allows remote authenticated users to "navigate" to arbitrary files via the report parameter of the BIRT viewer servlet...
CVE-2015-5071
CVE-2015-5071 affects BMC Remedy AR System: AR System Mid Tier prior to 9.0 SP1 in AR Reporting can allow remote authenticated users to navigate to arbitrary files via the __report parameter of the BIRT Viewer servlet. The vulnerability has been confirmed in BMC Remedy AR 8.1 and 9.0 (per errata)...