virus logo Intrusion Prevention

Borland.AccuRev.SaveContentServiceImpl.Servlet.Path.Traversal

description-logoDescription

This indicates an attack attempt to exploit an Information Disclosure vulnerability in Borland AccuRev.
The vulnerability is caused by an input validation error in the SaveContentServiceImpl servlet while processing an HTTP request. Remote attackers may be able to exploit this to gain unauthorized access to sensitive information via a crafted request.

affected-products-logoAffected Products

Borland AccuRev All versions

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

ZDI-15-411
ID 41480
Created Oct 19, 2015
Updated Apr 28, 2016
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID
Default Action drop
Active
Affected OS Windows, Linux, Solaris
Affected App Other