SecureState released new details on a vulnerability regarding TCL code injection in SiteScape Enterprise Forums. This web application provides a large scale collaborative environment that many organizations use for communication and documentation. This vulnerability, originally released in 2007 as CVE 2007-6515, stated only that SiteScape could be exploited to execute Tool Command Language (TCL) commands.
Read more on our new blog http://blog.securestate.com/post/2011/01/12/SiteScape-Forums-TCL-Injection-Exploit-Released.aspx
Friday, February 25, 2011
Subscribe to:
Post Comments (Atom)
Posts
No comments:
Post a Comment