PT-2019-18743 · Ricoh · Fusionpro Vdp

0V3Rride

Publicado

2019-12-31

Atualizado

2020-01-14

CVE-2019-7751

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Ricoh MarcomCentral, formerly PTI Marketing, FusionPro VDP versions prior to 10.0

Description A directory traversal and local file inclusion issue allows a remote attacker to list or enumerate sensitive contents of files. This could potentially lead to privilege escalation by accessing the local machine's SAM and SYSTEM database files, and possibly enable remote code execution.

Recommendations For versions prior to 10.0, update to version 10.0 or later to resolve the issue.

Exploit

Correção

RCE

Path traversal

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-22

Identificadores relacionados

CVE-2019-7751

Produtos afetados

Fusionpro Vdp

PT-2019-18743 · Ricoh · Fusionpro Vdp

CVE-2019-7751

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4