CVE-2001-0805

UNRATED

Description

Directory traversal vulnerability in ttawebtop.cgi in Tarantella Enterprise 3.00 and 3.01 allows remote attackers to read arbitrary files via a .. (dot dot) in the pg parameter.

Affected products

tarantella / tarantella_enterprise3.0 – 3.0
tarantella / tarantella_enterprise3.01 – 3.01

References

MISChttp://www.securityfocus.com/bid/2890
MISChttp://www.securityfocus.com/archive/1/3B2E37D0.81D9ED9D%40snosoft.com
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/6723
MISChttp://www.securityfocus.com/archive/1/20010619150935.A5226%40tarantella.com