漏洞类别:Local
漏洞等级: 
漏洞信息
HP WebInspect is an automated and configurable web-application security-testing tool that mimics real-world hacking techniques and attacks.
A potential security vulnerability has been identified with HP WebInspect software. The vulnerability could be exploited remotely to allow unauthorized access.
Affected Versions
HP WebInspect version 10.4, 10.3, 10.2, 10.1, 10.0
HP WebInspect version 9.x, 8.x, 7.x
漏洞危害
On successful exploitation it allows remote authenticated users to bypass intended access restrictions via unknown vectors.
解决方案
HP has provided the following software update to resolve the vulnerability in HP WebInspect.
WebInspect 10.4 software update 1.
Customers should contact HP Fortify Technical Support to obtain the software update.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论