Proofpoint Protection Server contains multiple vulnerabilities including authentication bypass, insufficient authorization checks, command injection, SQL injection, and directory traversal.
Clear Skies Security's advisory states:
"Enduser Authentication Bypass
An attacker may be able to bypass authentication to the web interface, run system commands, or download arbitrary files.
Apply an Update
Thanks to Scott Miles of Clear Skies Security for reporting these vulnerabilities.
This document was written by Jared Allar.
|Date First Published:||2011-05-02|
|Date Last Updated:||2011-05-02 18:21 UTC|