Directory traversal vulnerability in WebSEAL in IBM Tivoli Access Manager for e-business 6.1.1 prior to 6.1.1-TIV-AWS-FP0001 on AIX allows remote malicious users to read arbitrary files via a %uff0e%uff0e (encoded dot dot) in a URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ibm tivoli_access_manager_for_e-business 6.1.1 |