Multiple ManageEngine Products CVE-2014-6034 Arbitrary File Upload Vulnerability

Bugtraq ID: 70167
Class: Input Validation Error
CVE: CVE-2014-6034
Remote: Yes
Local: No
Published: Sep 27 2014 12:00AM
Updated: May 12 2015 07:35PM
Credit: Pedro Ribeiro, Agile Information Security
Vulnerable: ZOHO Corporation ManageEngine Social IT Plus 11.0
ZOHO Corporation ManageEngine OpManager 8.8
ZOHO Corporation ManageEngine OpManager 11.3
ZOHO Corporation ManageEngine OpManager 10.0
ZOHO Corporation ManageEngine IT360 10.4
ZOHO Corporation ManageEngine IT360 10.0
Not Vulnerable: ZOHO Corporation ManageEngine Social IT Plus 11.0 build 11300
ZOHO Corporation ManageEngine OpManager 11.3 build 11300
ZOHO Corporation ManageEngine IT360 10.4 build 11300


 

Privacy Statement
Copyright 2010, SecurityFocus