Remote Code Execution Vulnerability in Esri ArcGIS for Server Mobile-Upload Feature

Remote Code Execution Vulnerability in Esri ArcGIS for Server Mobile-Upload Feature

CVE-2013-5221 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

The mobile-upload feature in Esri ArcGIS for Server 10.1 through 10.2 allows remote authenticated users to upload .exe files by leveraging (1) publisher or (2) administrator privileges.

Learn more about our Cis Benchmark Audit For Server Software.