Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 up to and including 3.7.1 allows remote malicious users to read arbitrary files or directories via encoded .. (dot dot) sequences containing "%2e" strings.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tivoli secureway policy director 3.7.1 |
||
ibm tivoli secureway policy director 3.0.1 |
||
ibm tivoli secureway policy director 3.6 |
||
ibm tivoli secureway policy director 3.7 |