CVE-2016-8017

Name of the Vulnerable Software and Affected Versions Intel Security VirusScan Enterprise Linux (VSEL) versions 2.0.3 and earlier

Description The issue is related to a special element injection vulnerability that exists due to insufficient input validation. This allows an authenticated remote attacker to read files on the web server via crafted user input. The vulnerability can be exploited by a remote attacker to gain unauthorized access to files on the web server.

Recommendations For Intel Security VirusScan Enterprise Linux (VSEL) versions 2.0.3 and earlier, update to a version that includes the necessary input validation fixes to prevent exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.