Directory Traversal Vulnerability in Informix Web DataBlade
CVE-2001-0924

Currently unrated

Key Information:

Vendor: IBM
Status: Informix Web Datablade
Vendor: CVE Published:; 22 November 2001

Summary

A directory traversal vulnerability exists in the ifx CGI program of Informix Web DataBlade, allowing remote attackers to exploit the LO parameter by using '..' sequences to navigate the directory structure. This could enable unauthorized access to sensitive files on the server, potentially exposing confidential information and compromising the integrity of the web application.

References

http://marc.info/?l=bugtraq&m=100688672019635&w=2

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/7585

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/3575

vdb-entryx_refsource_BID

EPSS Score

11% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Jan 31, 2002
Vulnerability published
Nov 22, 2001