Arbitrary File Creation Vulnerability in Plixer Scrutinizer

Arbitrary File Creation Vulnerability in Plixer Scrutinizer

CVE-2012-2627 · HIGH Severity

AV:N/AC:L/AU:N/C:N/I:C/A:C

d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) before 9.5.0 allows remote attackers to create or overwrite arbitrary files in %PROGRAMFILES%\Scrutinizer\snmp\mibs\ via a multipart/form-data POST request.

Learn more about our Web App Pen Testing.