MediaPartner Enterprise Web server is reported prone to multiple vulnerabilities. These issues can allow remote attackers to disclose sensitive information, carry out directory traversal and cross-site scripting attacks, and gain administrative access to an affected server. The following specific issues were identified: An attacker can disclose sensitive scripts through the Web by sending a malformed HTTP GET request. This issue affects MediaPartner 5.0 and 5.1 An attacker can also disclose Web readable files by carrying out directory traversal attacks. This vulnerability is reported to affect MediaPartner 5.0. It may affect MediaPartner 5.1 as well, though this is not confirmed. It is reported that an attacker can also execute arbitrary script code in a user's browser by carrying out cross-site scripting attacks. This vulnerability is reported to affect MediaPartner 5.0. It may affect MediaPartner 5.1 as well, though this is not confirmed. The last vulnerability allows remote...
MediaPartner Enterprise Web server is reported prone to multiple vulnerabilities. These issues can allow remote attackers to disclose sensitive information, carry out directory traversal and cross-site scripting attacks, and gain administrative access to an affected server. The following specific issues were identified: An attacker can disclose sensitive scripts through the Web by sending a malformed HTTP GET request. This issue affects MediaPartner 5.0 and 5.1 An attacker can also disclose Web readable files by carrying out directory traversal attacks. This vulnerability is reported to affect MediaPartner 5.0. It may affect MediaPartner 5.1 as well, though this is not confirmed. It is reported that an attacker can also execute arbitrary script code in a user's browser by carrying out cross-site scripting attacks. This vulnerability is reported to affect MediaPartner 5.0. It may affect MediaPartner 5.1 as well, though this is not confirmed. The last vulnerability allows remote attackers to change users' password without proper authorization. This vulnerability is reported to affect MediaPartner 5.0. It may affect MediaPartner 5.1 as well, though this is not confirmed.
