NTT Data TERASOLUNA Server Framework for Java(WEB) 2.0.0.1 through 2.0.6.1, as used in Fujitsu Interstage Business Application Server and other products, allows remote attackers to bypass a file-extension protection mechanism, and consequently read arbitrary files, via a crafted pathname.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.2.0 | 2.0.2.0 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.1.0 | 2.0.1.0 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.6.1 | 2.0.6.1 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.5.1 | 2.0.5.1 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.5.3 | 2.0.5.3 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.0.1 | 2.0.0.1 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.0.2 | 2.0.0.2 |
Terasoluna_server_framework_for_java_web | Nttdata | 2.0.5.2 | 2.0.5.2 |