SecuritySpace - CVE-2016-5803

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2016-5803

Description: An issue was discovered in CA Unified Infrastructure Management Version 8.47 and earlier. The Unified Infrastructure Management software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2016-5803
BugTraq ID: 94243
http://www.securityfocus.com/bid/94243
https://ics-cert.us-cert.gov/advisories/ICSA-16-315-01

CVE ID:	CVE-2016-5803
Description:	An issue was discovered in CA Unified Infrastructure Management Version 8.47 and earlier. The Unified Infrastructure Management software uses external input to construct a pathname that should be within a restricted directory, but it does not properly neutralize sequences such as ".." that can resolve to a location that is outside of that directory.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2016-5803 BugTraq ID: 94243 http://www.securityfocus.com/bid/94243 https://ics-cert.us-cert.gov/advisories/ICSA-16-315-01