Liferay Enterprise Portal 'exportFileName' File Creation Remote Code Execution Vulnerability

Bugtraq ID: 42429
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: May 12 2010 12:00AM
Updated: Aug 13 2010 06:34PM
Credit: Stefano Di Paola of Minded Security
Vulnerable: Liferay Enterprise Portal 4.4.2
Not Vulnerable: Liferay Enterprise Portal 6.0.4 GA


 

Privacy Statement
Copyright 2010, SecurityFocus