Vulnerability in Esri Arcgis_server
CVE-2014-5122
Open redirect vulnerability in ESRI ArcGIS for Server 10.1.1 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an unspecified parameter, related to login.
EPSS: 0.003 (55.1th percentile) — read the EPSS interpretation.
Affected products
- Esri Arcgis_server — versions 10.1.1
- N/a — versions n/a
References
- 69341 (vdb-entry, x_refsource_BID)
- cve@mitre.org (x_refsource_MISC)
- 20140820 ArcGIS for Server Vulnerability Disclosure (mailing-list, x_refsource_BUGTRAQ)
- 1030752 (vdb-entry, x_refsource_SECTRACK)