SecurityReporter CVE-2007-4043 Security Bypass Vulnerability

SecurityReporter CVE-2007-4043 Security Bypass Vulnerability

SecurityReporter is prone to a security bypass vulnerability. file.cgi in Secure Computing SecurityReporter (aka Network Security Analyzer) before 4.6.3 allows remote attackers to bypass authentication via a name parameter ending with a "%00.gif" sequence. NOTE: a separate traversal vulnerability could be leveraged to download arbitrary files.