Test ID:	1.3.6.1.4.1.25623.1.0.808094
Category:	General
Title:	Elastic Logstash 'CVE-2015-4152' Directory Traversal Vulnerability
Summary:	This host is running Elastic Logstash; and is prone to directory traversal vulnerability.
Description:	Summary: This host is running Elastic Logstash and is prone to directory traversal vulnerability. Vulnerability Insight: The Flaw is due to improper validation of path option in file output plugin. Vulnerability Impact: Successful exploitation will allow remote attackers to write to arbitrary files. Affected Software/OS: Elastic Logstash version prior to 1.4.3. Solution: Update to Elastic Logstash version 1.4.3, or later. CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P
Cross-Ref:	BugTraq ID: 75112 Common Vulnerability Exposure (CVE) ID: CVE-2015-4152 Bugtraq: 20150609 Logstash vulnerability CVE-2015-4152 (Google Search) http://www.securityfocus.com/archive/1/535725/100/0/threaded http://packetstormsecurity.com/files/132233/Logstash-1.4.2-Directory-Traversal.html
Copyright	Copyright (C) 2016 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.