3 matches found
Arcserve Unified Data Protection Management getBackupPolicies Information Disclosure (CVE-2015-4069)
An information disclosure vulnerability exists in Arcserve Unified Data Protection UDP. This vulnerability exists in EdgeServiceImpl and is due to insufficient input validation of certain SOAP requests using the getBackupPolicies method. A remote unauthenticated attacker can exploit this...
Arcserve Unified Data Protection (UDP) < 5.0 Update 4 Multiple Vulnerabilities
Arcserve Unified Data Protection UDP is prone to multiple information disclosure vulnerabilities and multiple directory traversal vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective...
CVE-2015-4069
The EdgeServiceImpl web service in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive credentials via a crafted SOAP request to the 1 getBackupPolicy or 2 getBackupPolicies method...