Imperva SecureSphere Operations Manager CVE-2013-4094 Multiple Arbitrary File Upload Vulnerabilities

Imperva SecureSphere Operations Manager CVE-2013-4094 Multiple Arbitrary File Upload Vulnerabilities

Imperva SecureSphere Operations Manager is prone to multiple vulnerabilities that let attackers upload arbitrary files. These issues occur because the application fails to adequately sanitize user-supplied input.

An attacker may leverage these issues to upload arbitrary files to the affected computer; this can result in arbitrary code execution within the context of the vulnerable application.

Imperva SecureSphere Operations Manager 9.0.0.5 is vulnerable; other versions may also be affected.

NOTE: These issues were previously covered in BID 60286 (Imperva SecureSphere Operations Manager Multiple Security Vulnerabilities) but has been given its own record for better documentation.