Short Name |
HTTP:LEXMARK-LIB-FILE-DIR-TRAV |
---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
Lexmark Markvision LibraryFileUploadServlet Directory Traversal |
Release Date |
2015/05/04 |
Update Number |
2491 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability against Lexmark Markvision Enterprise . A successful attack can result in directory traversal attacks.
Directory traversal vulnerability in the LibraryFileUploadServlet servlet in Lexmark Markvision Enterprise allows remote authenticated users to write to and execute arbitrary files via a .. (dot dot) in a file path in a ZIP archive.