CVE-2008-0760

Name of the Vulnerable Software and Affected Versions SafeNet Sentinel Protection Server versions 7.4.1.0 and earlier SafeNet Sentinel Keys Server versions 1.0.4.0 and earlier

Description The issue allows remote attackers to read arbitrary files via a .. (dot dot backslash) in the URI. This is reportedly due to an incomplete fix for a previous issue.

Recommendations For SafeNet Sentinel Protection Server versions 7.4.1.0 and earlier, update to a version later than 7.4.1.0 to resolve the issue. For SafeNet Sentinel Keys Server versions 1.0.4.0 and earlier, update to a version later than 1.0.4.0 to resolve the issue. As a temporary workaround, consider restricting access to sensitive files and directories to minimize the risk of exploitation.