CVE-2013-3626

Verastream Host Integrator 6.0-7.5 SP 1 HF 1 - Remote Code Execution via Session Server

Title source: llm
STIX 2.1

Description

Directory traversal vulnerability in the Session Server in Attachmate Verastream Host Integrator (VHI) 6.0 through 7.5 SP 1 HF 1 allows remote attackers to upload and execute arbitrary files via a crafted message.

References (2)

Core 2
Core References
Vendor Advisory x_refsource_misc
http://support.attachmate.com/techdocs/2700.html
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/436214

Scores

EPSS 0.0278
EPSS Percentile 84.6%

Details

CWE
CWE-22
Status published
Products (6)
attachmate/verastream_host_integrator 6.0
attachmate/verastream_host_integrator 6.5
attachmate/verastream_host_integrator 6.6
attachmate/verastream_host_integrator 7.0
attachmate/verastream_host_integrator 7.1
attachmate/verastream_host_integrator 7.5 (2 CPE variants)
Published Nov 06, 2013
Tracked Since Feb 18, 2026