Back to search
CVE-2017-9538
Published: Oct 2, 2017
Modified: Aug 5, 2024
PUBLISHED
Description
The 'Upload logo from external path' function of SolarWinds Network Performance Monitor version 12.0.15300.90 allows remote attackers to cause a denial of service (permanent display of a "Cannot exit above the top directory" error message throughout the entire web application) via a ".." in the path field. In other words, the denial of service is caused by an incorrect implementation of a directory-traversal protection mechanism.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20170929 [CVE-2017-9538] Persistent Application Denial of Service
mailing-list
x_refsource_BUGTRAQ
101066
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now