Published: 28/11/2013 Updated: 29/11/2013

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

VhttpdMgr in Thomson Reuters Velocity Analytics Vhayu Analytic Server 6.94 build 2995 allows remote malicious users to execute arbitrary code via a URL in the fileName parameter during an importFile action.

Vulnerable Product	Search on Vulmon	Subscribe to Product
thomsonreuters velocity analytics vhayu analytic server 6.94

Check Point Reference: CPAI-2013-3911 Date Published: 28 Feb 2024 Severity: High ...

source: wwwsecurityfocuscom/bid/63880/info Thomson Reuters Velocity Analytics is prone to a vulnerability that lets attackers inject and execute arbitrary code Successfully exploiting this issue may allow an attacker to upload and execute arbitrary code with SYSTEM privileges Thomson Reuters Velocity Analytics 694 build 2995 is vulne ...

CWE-94 http://www.kb.cert.org/vuls/id/893462 https://nvd.nist.gov https://www.exploit-db.com/exploits/38850/https://www.kb.cert.org/vuls/id/893462

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2013-5912

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect