Directory Traversal Vulnerability in iPlanet Administration Server 5.1 by Sun Microsystems
CVE-2003-0676

Currently unrated

Key Information:

Vendor: Oracle
Status: Iplanet Directory Server; One Directory Server
Vendor: CVE Published:; 27 August 2003

What is CVE-2003-0676?

The directory traversal vulnerability found in the iPlanet Administration Server 5.1 enables attackers to access sensitive files on the server. By using specially crafted URL requests with encoded sequences like '..%2f', remote attackers can circumvent security measures and read arbitrary files, potentially exposing critical information. This flaw necessitates careful attention to input validation and access controls to mitigate potential exploitation.

References

http://marc.info/?l=bugtraq&m=106036588613929&w=2

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Aug 27, 2003
Vulnerability Reserved
Aug 8, 2003

Oracle

What is CVE-2003-0676?

References

Timeline