CVE-2012-2627

High

9.4/10

Summary

d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote attackers to create or overwrite arbitrary files in %PROGRAMFILES%\Scrutinizer\snmp\mibs\ via a multipart/form-data POST request.

Access Complexity: LOW
AccessVector: NETWORK
Authentication: NONE
Integrity Impact: COMPLETE
Confidentiality Impact: NONE
Availability Impact: COMPLETE

References

Advisory Timeline

Published Jul 31, 2012

CVE-2012-2627

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS