QwikSec

Security Database

CVE

CWE

Training

CVE-2016-1183

Published: Jun 19, 2016

Modified: Aug 5, 2024

PUBLISHED

Description

NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 through 2.0.6.1, as used in Fujitsu Interstage Business Application Server and other products, allows remote attackers to bypass a file-extension protection mechanism, and consequently read arbitrary files, via a crafted pathname.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.fujitsu.com/jp/products/software/resources/condition/security/vulnerabilities/2016/index.html#CVE-2016-1183

x_refsource_CONFIRM

third-party-advisory

x_refsource_JVN

JVNDB-2016-000098

third-party-advisory

x_refsource_JVNDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.