ManageEngine EventLog Analyzer Multiple Security Vulnerabilities

ManageEngine EventLog Analyzer is prone to an arbitrary file-upload vulnerability and an unauthorized-access vulnerability.

Attackers can exploit these issues to execute arbitrary code and gain unauthorized access to the critical sections of the application.

EventLog Analyzer 9.9 Build 9002 and prior are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus