Title: Cognos Powerplay Web Edition Dynamic Directory Vulnerability
Severity: HIGH
Description:
Cognos Powerplay Web Edition is a commercial Business Performance Measurement and Reporting application.
Remote attackers can display directories dynamically.
Normally when a user attempts to access protected data cubes they are prompted for a userid/password. No attempt is made by the service to further authenticate the user.
This may be bypassed by remote attackers who know the location of temporary files on the host and make a web request for that directory.
Files listed in that directory will be accessed without requiring the attacker to authenticate.
Affected Products:
- Cognos Powerplay Web Edition 4.0.0
- Cognos Powerplay Web Edition 4.1.0
- Cognos Powerplay Web Edition 5.0.01
- Cognos Powerplay Web Edition 5.21.0
- Cognos Powerplay Web Edition 6.0.0
- Cognos Powerplay Web Edition 6.5.0
References:
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
