CVE-2014-5006

Publication date

2014-10-21 15:00:00

Family

mitre

State

PUBLISHED

Description

Directory traversal vulnerability in ZOHO ManageEngine Desktop Central (DC) before 9 build 90055 allows remote attackers to execute arbitrary code via a .. (dot dot) in the fileName parameter to mdm/mdmLogUploader.