Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 11/09/2006 Updated: 19/10/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Directory traversal vulnerability in Redirect.bat in IBM Director prior to 5.10 allows remote malicious users to read arbitrary files via a .. (dot dot) sequence in the file parameter.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ibm director

There is a vulnerability within the Redirectbat file on a ibm director cgi which allows a directory transversal to take place which in turn exposes most files on the system to be read without authorization ipofsystem:411/cgi-bin/Redirectbat?file=%7C\\\\\\\\program%20files\ibm\director\versionkey (or insert evil file ...

NVD-CWE-Other ftp://ftp.software.ibm.com/pc/pccbbs/pc_servers_pdf/dir5.10_docs_relnotes.pdf http://www.securityfocus.com/bid/19898 http://securitytracker.com/id?1016815 http://secunia.com/advisories/21802 http://www.vupen.com/english/advisories/2006/3532 https://exchange.xforce.ibmcloud.com/vulnerabilities/28836 https://www.exploit-db.com/exploits/2320 https://nvd.nist.gov https://www.exploit-db.com/exploits/2320/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4681

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect