Security Advisory

CVE-2014-5005

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-10-21 15:00:00

Last updated 2024-08-06 11:34:37

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in ZOHO ManageEngine Desktop Central (DC) before 9 build 90055 allows remote attackers to execute arbitrary code via a .. (dot dot) in the fileName parameter in an LFU action to statusUpdate.

← Browse all CVEs View on cve.org ↗