Directory traversal vulnerability in idm/includes/helpServer.jsp in Sun Java System Identity Manager 6.0 up to and including 6.0 SP4, 7.0, and 7.1 allows remote malicious users to read arbitrary files in the filesystem of the IDM server via directory traversal sequences in the ext parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sun java system identity manager 6.0 |
||
sun java system identity manager 7.0 |
||
sun java system identity manager 7.1 |