RSS   Vulnerabilities for
'Arcserve unified data protection'
   RSS

2015-05-29
 
CVE-2015-4069

 

 
The EdgeServiceImpl web service in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive credentials via a crafted SOAP request to the (1) getBackupPolicy or (2) getBackupPolicies method.

 
 
CVE-2015-4068

 

 
Directory traversal vulnerability in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet.

 

 >>> Vendor: Arcserve 2 Products
Brightstor
Arcserve unified data protection


Copyright 2017, cxsecurity.com

 

Back to Top