CVE-2002-0908

Currently unrated

Key Information:

Vendor: Cisco
Status: Ids Device Manager
Vendor: CVE Published:; 4 October 2002

Summary

Directory traversal vulnerability in the web server for Cisco IDS Device Manager before 3.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTPS request.

References

http://www.iss.net/security_center/static/9174.php

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/bugtraq/2002-05/02...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/4760

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Oct 4, 2002
Vulnerability Reserved
Aug 16, 2002