2 matches found
CVE-2017-16609
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within download.jsp. The issue results from the lack of proper validation ...
CVE-2017-16609
Summary: CVE-2017-16609 affects NetGain Enterprise Manager. The flaw is in the download.jsp path where a user-supplied string is not properly validated before using it to download a file. This allows remote, unauthenticated attackers to disclose sensitive information from vulnerable installations...