Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Analysis of the Bomgar Remote Support Portal JavaStart.jar Applet 52790 and earlier revealed that it is vulnerable to a path traversal vulnerability. The archive can be downloaded from a given Bomgar Remote Support Portal deployment at https://domain/api/content/JavaStart.jar and is callable from an arbitrary website using <object> and/or <appletHTML> tags. Successful exploitation results in file creation/modification/deletion in the operating system and with privileges of the user that ran the Java applet.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Bomgar Remote Support Portal JavaStart.jar Applet 路径遍历漏洞
Vulnerability Description
Bomgar Remote Support Portal JavaStart.jar Applet是美国Bomgar公司的一套跨平台的远程支持工具。该工具通过防火墙对远程桌面、服务器、POS系统及其他移动设备提供远程协助功能。 Bomgar Remote Support Portal JavaStart.jar Applet 52790及之前版本中存在路径遍历漏洞。攻击者可利用该漏洞在操作系统中创建/更改/删除文件。
CVSS Information
N/A
Vulnerability Type
N/A