Blue Coat Reporter Directory Traversal Vulnerability Network Vulnerability

Summary

Blue Coat Reporter is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary local files within the context of the Web server. Information harvested may aid in launching further attacks. Blue Coat Reporter versions prior to 9.3 are vulnerable.

Solution

Updates are available. Please see the references for details.

References

http://www.bluecoat.com
http://www.bluecoat.com/products/reporter/index.html
http://www.securityfocus.com/bid/49482
https://kb.bluecoat.com/index?page=content&id=SA60

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 4.3 AV:N/AC:M/Au:N/C:P/I:N/A:N

Related Vulnerabilities

AfterLogic WebMail Pro Multiple Cross Site Scripting Vulnerabilities
7Media Web Solutions EduTrac Directory Traversal Vulnerability
Apache Tomcat Information Disclosure Vulnerability
Annuaire PHP 'sites_inscription.php' Cross Site Scripting Vulnerability
Apache Tomcat source.jsp malformed request information disclosure

Take action and discover your vulnerabilities