Patch

Description:

Sentinel Protection Installer 7.4.0 [Security Patch]

Content:

Web Vulnerability Scanner scans that our Sentinel Server is prone to Directory Traversal Attack. If you paste the link below, you will be able to download the files from any system that is running
the Sentinel Keys Server or Sentinel Protection Server. Below is the link for Sentinel Keys Server.

http://192.168.0.1:7002/..//..//..//..//..//..//Windows/notepad.exe

The link below gives access to the root. Now, if anyone knows where the file is located, will be able to get the file, even if he is not authorized.

http://192.168.0.1:7002/..//..//..//..//..//..//

Note: Sentinel Keys Server and Sentinel Protection Server have been modified to resolve the issue.

How to Use?

1. Install Sentinel Protection Installer 7.4.0 (DocID 6418 or 6328).
2. Run SPI740SecurityPatch.exe (DocID 6659). It will install the patch files on the target operation system.

Operating System:

Windows

Product:

Sentinel Hardware Keys
Sentinel Keys
SentinelSuperpro
SentinelSystemDriver
SentinelUltraPro
UltraPro

File Name:

SPI740SecurityPatch.zip

Download:

Click here to download

Last Reviewed on:

11/08/2007