Directory Traversal Vulnerability in HP Web JetAdmin 5.6
CVE-2000-0443

Currently unrated

Key Information:

Vendor: HP
Status: Jetadmin
Vendor: CVE Published:; 24 May 2000

Summary

The web interface server in HP Web JetAdmin version 5.6 is susceptible to a directory traversal vulnerability, allowing remote attackers to exploit the system. By utilizing a '..' (dot dot) command, an attacker can navigate the file system and read arbitrary files, leading to potential information disclosure and privacy breaches. Organizations using this version of HP Web JetAdmin should take immediate steps to mitigate this vulnerability and secure their systems against unauthorized access.

References

http://www.osvdb.org/1350

vdb-entryx_refsource_OSVDB

http://archives.neohapsis.com/archives/bugtraq/2000-05/02...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1243

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Jun 14, 2000
Vulnerability published
May 24, 2000