Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected File Download. `www/delivery/asyncspc.php` was vulnerable to the fairly new Reflected File Download (RFD) web attack vector that enables attackers to gain complete control over a victim's machine by virtually downloading a file from a trusted domain.
References
Link | Resource |
---|---|
https://github.com/revive-adserver/revive-adserver/commit/69aacbd2 | Patch Third Party Advisory |
https://hackerone.com/reports/148745 | Permissions Required |
https://www.revive-adserver.com/security/revive-sa-2016-002/ | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: hackerone
Published: 2017-03-28T02:46:00
Updated: 2017-03-28T02:57:01
Reserved: 2016-11-19T00:00:00
Link: CVE-2016-9470
JSON object: View
NVD Information
Status : Modified
Published: 2017-03-28T02:59:01.307
Modified: 2019-10-09T23:20:30.287
Link: CVE-2016-9470
JSON object: View
Redhat Information
No data.