2 matches found
Security Bulletin: Unauthenticated arbitrary file disclosure in IBM SPSS Collaboration and Deployment Services (CVE-2013-4043)
Summary A remote, unauthenticated attacker can send a HTTP request to retrieve the content of any file on the IBM SPSS Collaboration and Deployment Service server. Vulnerability Details CVEID: CVE-2013-4043 DESCRIPTION: A remote, unauthenticated attacker can send a HTTP request to retrieve the...
CVE-2013-4043
IBM SPSS Collaboration and Deployment Services has an unauthenticated file-disclosure vulnerability (CVE-2013-4043) affecting 4.x before 4.2.1.3 IF3, 5.x before 5.0 FP3, and 6.x before 6.0 IF1. A remote attacker can issue an HTTP request to retrieve arbitrary server files. The IBM Security Bullet...