Showing 1 - 1 of 1

CVE-2016-1594

Status Candidate

Overview

Micro Focus Novell Service Desk before 7.2 allows remote authenticated users to read arbitrary attachments via a request to a LiveTime.woa URL, as demonstrated by obtaining sensitive information via a (1) downloadLogFiles or (2) downloadFile action.

Related Files

Novell Service Desk 7.1.0 Code Execution / Information Disclosure: Posted Apr 11, 2016; Authored by Pedro Ribeiro; Novell Service Desk versions 7.1.0 and below suffer from code execution, information disclosure, cross site scripting, remote file upload, HQL injection, and traversal vulnerabilities.; tags | exploit, remote, vulnerability, code execution, xss, info disclosure, file upload; advisories | CVE-2016-1593, CVE-2016-1594, CVE-2016-1595, CVE-2016-1596; SHA-256 | c58735b33740e5edd50a8cae45802afa2db11198bcbbc4f1e7779e1640bb8f1c; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 251 files
Ubuntu 61 files
LiquidWorm 29 files
Debian 21 files
indoushka 20 files
Apple 10 files
Google Security Research 5 files
Emiliano Febbi 4 files
Chokri Hammedi 3 files
Alter Prime 3 files

File Archives

Systems

AIX (430)
Apple (2,126)
BSD (378)
CentOS (61)
Cisco (1,954)
Debian (7,153)
Fedora (1,693)
FreeBSD (1,247)
Gentoo (4,599)
HPUX (881)
iOS (393)
iPhone (108)
IRIX (220)
Juniper (71)
Linux (51,749)
Mac OS X (696)
Mandriva (3,105)
NetBSD (256)
OpenBSD (490)
RedHat (17,187)
Slackware (941)
Solaris (1,615)
SUSE (1,444)
Ubuntu (9,958)
UNIX (9,472)
UnixWare (188)
Windows (6,784)
Other

CVE-2016-1594

Overview

Related Files

File Archive:

November 2024

Top Authors In Last 30 Days

File Tags

File Archives

Systems