Web Encryption Extension Unspecified Remote Code Execution Vulnerability
BID:68931
Info
Web Encryption Extension Unspecified Remote Code Execution Vulnerability
| Bugtraq ID: | 68931 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 25 2014 12:00AM |
| Updated: | Jul 25 2014 12:00AM |
| Credit: | Senderek Web Security |
| Vulnerable: |
Senderek Web Security Web Encryption Extension 1.0 |
| Not Vulnerable: |
Senderek Web Security Web Encryption Extension 3.0 |
Discussion
Web Encryption Extension Unspecified Remote Code Execution Vulnerability
Web Encryption Extension is prone to an unspecified remote code-execution vulnerability.
A remote attacker can leverage this issue to execute arbitrary code in context of the application.
Versions prior to Web Encryption Extension 3.0 are vulnerable.
Web Encryption Extension is prone to an unspecified remote code-execution vulnerability.
A remote attacker can leverage this issue to execute arbitrary code in context of the application.
Versions prior to Web Encryption Extension 3.0 are vulnerable.
Solution / Fix
Web Encryption Extension Unspecified Remote Code Execution Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Web Encryption Extension Unspecified Remote Code Execution Vulnerability
References:
References:
- The Web Encryption Extension Homepage (Senderek Web Security)
- Web Encryption Extension security update (SecLists.Org)