Vuln: Multiple Micro Focus Products CVE-2016-5765 Directory Traversal Vulnerability

Bugtraq ID: 94579
Class: Input Validation Error
CVE:

CVE-2016-5765

Remote: Yes
Local: No
Published: Nov 29 2016 12:00AM
Updated: Nov 29 2016 12:00AM
Credit: rgod working with Trend Micro’s Zero Day Initiative
Vulnerable:

Micro Focus Reflection ZFE 2.0.1

Micro Focus Reflection ZFE 2.0

Micro Focus Reflection ZFE 1.4

Micro Focus Reflection Security Gateway 12.1

Micro Focus Reflection for the Web 12.3

Micro Focus Reflection for the Web 12.2

Micro Focus Reflection for the Web 12.1

Micro Focus Host Access Management and Security Server 12.3

Micro Focus Host Access Management and Security Server 12.2

Not Vulnerable:

Micro Focus Reflection ZFE 2.0.1.18

Micro Focus Reflection ZFE 2.0.0.52

Micro Focus Reflection ZFE 1.4.0.14

Micro Focus Reflection Security Gateway 12.1 build 362

Micro Focus Reflection for the Web 12.3 build 312

Micro Focus Reflection for the Web 12.2 build 342

Micro Focus Reflection for the Web 12.1 build 362

Micro Focus Host Access Management and Security Server 12.3 build 326

Micro Focus Host Access Management and Security Server 12.2 build 342

Source: SecurityFocus Vulnerabilities @ November 29, 2016 at 11:00AM

0
Share