Description
Directory traversal vulnerability in ScriptEase viewcode.jse for Netware 5.1 before 5.1 SP3 allows remote attackers to read arbitrary files via ".." sequences in the query string.
Affected products
- nombas / scriptease_webserver4.30b – 4.30b
- nombas / scriptease_webserver4.30d – 4.30d
- Novell / netware5.1 – 5.1
- Novell / netware5.1 – 5.1
References
- MISChttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0221.html
- MISChttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0218.html
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/7726
- MISChttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2001-12/0204.html
- MISChttp://www.securityfocus.com/bid/3715