Drools CVE-2016-7041 Directory Traversal Vulnerability

Drools is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

An attacker can exploit this issue using directory-traversal characters ('../') to access or read arbitrary files that contain sensitive information or to access files outside of the restricted directory to obtain sensitive information and perform other attacks.


 

Privacy Statement
Copyright 2010, SecurityFocus