Directory traversal vulnerability in SafeNet Sentinel Protection Server 7.0.0 through 7.4.0 and possibly earlier versions, and Sentinel Keys Server 1.0.3 and possibly earlier versions, allows remote attackers to read arbitrary files via a .. (dot dot) in the query string.
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.
| Link | Tags |
|---|---|
| https://ics-cert.us-cert.gov/advisories/ICSA-15-272-01 | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/38636 | vdb entry |
| http://www.securityfocus.com/archive/1/484224/100/200/threaded | mailing list |
| http://safenet-inc.com/support/files/SPI740SecurityPatch.zip | |
| http://securityreason.com/securityalert/3471 | third party advisory |
| http://www.securityfocus.com/bid/26583 | exploit vdb entry patch |
| http://secunia.com/advisories/27811 | third party advisory vendor advisory |
| http://www.vupen.com/english/advisories/2007/4011 | vdb entry |
| http://www.securityfocus.com/archive/1/484201/100/200/threaded | mailing list |
| http://www.securitytracker.com/id?1018992 | vdb entry exploit |