NextApp Echo XML Parsing Local File Disclosure Vulnerability

NextApp Echo is prone to a local file-disclosure vulnerability caused by a design error.

An attacker can exploit this vulnerability to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks.

The issue affects versions prior to Echo 2.1.1 and 3.0.b6.


 

Privacy Statement
Copyright 2010, SecurityFocus