CVE-2016-1183

Publication date

2016-06-19 01:00:00

Family

jpcert

State

PUBLISHED

Description

NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 through 2.0.6.1, as used in Fujitsu Interstage Business Application Server and other products, allows remote attackers to bypass a file-extension protection mechanism, and consequently read arbitrary files, via a crafted pathname.