NuytsTech Security

CVE-2014-8316

by ·

XML External Entity (XXE) vulnerability in polestar_xml.jsp in SAP BusinessObjects Explorer 14.0.5 build 882 allows remote attackers to read arbitrary files via the xmlParameter parameter in an explorationSpaceUpdate request.

Date published : 2014-10-16

http://www.securityfocus.com/bid/70384

http://www.securityfocus.com/archive/1/533673/100/0/threaded

Tags: