Lucene search
Andrea Micalizzi aka rgodZDI-13-282HistoryDec 18, 2013 - 12:00 a.m.
EMC Connectrix Manager Converged Network Edition inmservlets.war Information Disclosure Vulnerability
2013-12-1800:00:00
Andrea Micalizzi aka rgod
www.zerodayinitiative.com
19
EPSS
0.938
Percentile
99.1%
This vulnerability allows remote attackers to read arbitrary text files on vulnerable installations of EMC Connectrix Manager Converged Network Edition. Authentication is not required to exploit this vulnerability. The specific flaw exists within one of the pages served as part of the immservlets which allows an unauthenticated user to read an arbitrary text file anywhere on the system. An attacker can use this to either disclose sensitive data, or to disclose information about the server that can be used in a subsequent attack.
Related
checkpoint_advisories
checkpoint_advisories
prion
prion
Code injection
2013-12-12 17:55:00
zdi
zdi
securityvulns
securityvulns
nessus
nessus
HP B-series SAN Network Advisor < 12.1.1 Remote Code Execution (Windows)
2014-01-28 00:00:00
HP B-series SAN Network Advisor < 12.1.1 Remote Code Execution (Linux)
2014-01-28 00:00:00
cvelist
cvelist
CVE-2013-6810
2013-12-12 17:00:00
packetstorm
packetstorm
EMC CMCNE 11.2.1 Inmservlets.war FileUploadController Remote Code Execution
2017-09-14 00:00:00
EMC CMCNE 11.2.1 FileUploadController Remote Code Execution
2017-09-14 00:00:00
zdt
zdt
exploitdb
exploitdb
nvd
nvd
CVE-2013-6810
2013-12-12 17:55:03
seebug
seebug
EMC Connectrix Manager Converged Network Edition远程代码执行漏洞
2013-12-17 00:00:00
cve
cve
CVE-2013-6810
2013-12-12 17:55:03