Arbitrary File Upload Vulnerability in SysAid Help Desk

Arbitrary File Upload Vulnerability in SysAid Help Desk

CVE-2015-2995 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

The RdsLogsEntry servlet in SysAid Help Desk before 15.2 does not properly check file extensions, which allows remote attackers to upload and execute arbitrary files via a NULL byte after the extension, as demonstrated by a .war%00 file.

Learn more about our Web Application Penetration Testing UK.