CVE-2016-8020

Name of the Vulnerable Software and Affected Versions Intel Security VirusScan Enterprise Linux (VSEL) versions 2.0.3 and earlier

Description The issue is related to improper control of code generation, allowing remote authenticated users to execute arbitrary code via a crafted HTTP request parameter. This can also lead to bypassing sandbox mechanisms or causing a denial of service through a specially crafted parameter in an HTTP request.

Recommendations For versions 2.0.3 and earlier, update to a version later than 2.0.3 to resolve the issue. As a temporary workaround, consider restricting access to the HTTP request parameter to minimize the risk of exploitation.