CVE-2015-4527 - Well kept Aggravation

Description

Directory traversal vulnerability in EMC Avamar Server 7.x before 7.1.2 and Avamar Virtual Addition (AVE) 7.x before 7.1.2 allows remote attackers to read arbitrary files by using the Avamar Desktop/Laptop client interface to send crafted parameters.

Reference

http://seclists.org/bugtraq/2015/Jul/110 http://www.securitytracker.com/id/1033026