Directory Traversal Vulnerability in IBM Lotus Expeditor Help Component
CVE-2012-0186

Currently unrated

Key Information:

Vendor: IBM
Status: Lotus Expeditor
Vendor: CVE Published:; 22 June 2012

Summary

A directory traversal vulnerability exists in the Help component of IBM Lotus Expeditor versions 6.1.x and 6.2.x prior to 6.2 FP5+Security Pack. This flaw allows remote attackers to exploit crafted URLs to locate arbitrary files on the remote server. Such access can lead to information disclosure, potentially exposing sensitive file paths and application data.

References

http://www.ibm.com/support/docview.wss?uid=swg21575642

x_refsource_CONFIRM

https://exchange.xforce.ibmcloud.com/vulnerabilities/72096

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jun 22, 2012
Vulnerability Reserved
Dec 14, 2011