Code42 Enterprise and Crashplan for Small Business Client version 6.7 prior to 6.7.5, 6.8 prior to 6.8.8, and 6.9 prior to 6.9.4 allows eval injection. A proxy auto-configuration file, crafted by a lesser privileged user, may be used to execute arbitrary code at a higher privilege as the service user.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
code42 code42 for enterprise |
||
code42 crashplan for small business |