### [CVE-2016-8017](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8017)
![](https://img.shields.io/static/v1?label=Product&message=VirusScan%20Enterprise%20Linux%20(VSEL)&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=2.0.3%20(and%20earlier)%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Special%20element%20injection%20vulnerability&color=brightgreen)

### Description

Special element injection vulnerability in Intel Security VirusScan Enterprise Linux (VSEL) 2.0.3 (and earlier) allows authenticated remote attackers to read files on the webserver via a crafted user input.

### POC

#### Reference
- https://kc.mcafee.com/corporate/index?page=content&id=SB10181
- https://www.exploit-db.com/exploits/40911/

#### Github
- https://github.com/opsxcq/exploit-CVE-2016-8016-25