CVE-2013-3626
Verastream Host Integrator 6.0-7.5 SP 1 HF 1 - Remote Code Execution via Session Server
Title source: llmDescription
Directory traversal vulnerability in the Session Server in Attachmate Verastream Host Integrator (VHI) 6.0 through 7.5 SP 1 HF 1 allows remote attackers to upload and execute arbitrary files via a crafted message.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
http://support.attachmate.com/techdocs/2700.html
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/436214
Scores
EPSS
0.0278
EPSS Percentile
84.6%
Details
CWE
CWE-22
Status
published
Products (6)
attachmate/verastream_host_integrator
6.0
attachmate/verastream_host_integrator
6.5
attachmate/verastream_host_integrator
6.6
attachmate/verastream_host_integrator
7.0
attachmate/verastream_host_integrator
7.1
attachmate/verastream_host_integrator
7.5 (2 CPE variants)
Published
Nov 06, 2013
Tracked Since
Feb 18, 2026