CVE-2011-4880

Description

Directory traversal vulnerability in the web server in Certec atvise webMI2ADS (aka webMI) before 2.0.2 allows remote attackers to read arbitrary files via a crafted HTTP request.

Affected products

• atvise / webmi2ads2.0.1
• atvise / webmi2ads1.0 – 1.0
• atvise / webmi2ads2.0 – 2.0

References

• MISChttp://www.us-cert.gov/control_systems/pdf/ICSA-12-102-01.pdf