Intrusion Prevention

Liferay.Portal.barebone.jsp.Directory.Traversal

Description

This indicates and attack attempt to exploit a Directory Traversal Vulnerability in Liferay Portal.
The vulnerability is due to insufficient sanitizing of user supplied inputs in the application. A remote attacker can exploit this to gain unauthorized access to sensitive information.

Affected Products

Liferay 5.1.0

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Currently, we are not aware of any vendor-supplied advisory or patch regarding this vulnerability.

CVE References

CVE-2016-6517