Authentication bypass and path traversal in email template upload (CVE-2016-1610)

  • 7017788
  • 29-Jun-2016
  • 08-Aug-2016


Novell Filr 2.0
Novell Filr 1.2


A vulnerability in the custom email template handling in Novell Filr may allow a remote unauthenticated attacker to upload a file and write to an arbitrary path on the server with the access rights of the Filr web application (wwwrun). Depending on the payload and placement of the file this could lead to denial of service or remote code execution.


A fix for this issue is available in the Filr 2.0 Security Update 2, available via the Novell Patch Finder.

Special thanks to Wolfgang Ettlinger working with SEC Consult Vulnerability Lab for reporting this vulnerability to Micro Focus.