Arbitrary File Retrieval Vulnerability in RSA enVision Products
CVE-2011-2737

Currently unrated

Key Information:

Vendor: Rsa
Status: Envision
Vendor: CVE Published:; 25 August 2011

What is CVE-2011-2737?

Remote attackers can exploit a flaw in RSA enVision versions 3.x and 4.x prior to 4 SP4 P3, allowing them to read arbitrary files on the server. This vulnerability arises from unspecified vectors, which can be leveraged to gain unauthorized access to sensitive information, thus posing a serious threat to security and data integrity.

References

http://www.securityfocus.com/archive/1/519395/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securityreason.com/securityalert/8350

third-party-advisoryx_refsource_SREASON

http://www.securitytracker.com/id?1025979

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 25, 2011
Vulnerability Reserved
Jul 13, 2011

Rsa

What is CVE-2011-2737?

References

Timeline