Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[RT-SA-2017-006] Arbitrary File Disclosure with root Privileges via RdxEngine-API in REDDOXX Appliance
Jul 24 2017 01:57PM
RedTeam Pentesting GmbH (release redteam-pentesting de)
Advisory: Arbitrary File Disclosure with root Privileges via RdxEngine-API in REDDOXX Appliance
RedTeam Pentesting discovered an arbitrary file disclosure vulnerability
in the REDDOXX appliance software, which allows unauthenticated
attackers to list directory contents and download arbitrary files ...
[ more ]
Copyright 2010, SecurityFocus