Directory Traversal Vulnerability in McAfee Web Gateway
CVE-2014-2535

Currently unrated

Key Information:

Vendor: Mcafee
Status: Web Gateway
Vendor: CVE Published:; 18 March 2014

Summary

A directory traversal vulnerability exists in McAfee Web Gateway, affecting versions 7.4.x, 7.3.x, and earlier. This flaw allows remote authenticated users to exploit crafted requests targeting the web filtering port, thus gaining unauthorized access to sensitive files on the server. Proper mitigation steps should be taken to secure the affected versions and prevent unauthorized data exposure.

References

http://secunia.com/advisories/56958

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/66193

vdb-entryx_refsource_BID

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

Timeline

Vulnerability published
Mar 18, 2014
Vulnerability Reserved
Mar 18, 2014