Directory traversal vulnerability in the web-management interface in the server in Cisco Wide Area Application Services (WAAS) Mobile before 3.5.5 allows remote attackers to upload and execute arbitrary files via a crafted POST request, aka Bug ID CSCuh69773.
References
Link | Resource |
---|---|
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20131106-waasm | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-11-07 20:47
Updated : 2013-11-08 10:24
NVD link : CVE-2013-5554
Mitre link : CVE-2013-5554
JSON object : View
CWE
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Products Affected
cisco
- wide_area_application_services_mobile