CVE-2015-4069

Publication date

2015-05-29 15:00:00

Family

mitre

State

PUBLISHED

Description

The EdgeServiceImpl web service in Arcserve UDP before 5.0 Update 4 allows remote attackers to obtain sensitive credentials via a crafted SOAP request to the (1) getBackupPolicy or (2) getBackupPolicies method.