Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1529

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1529
Last Modified 05 Sep 2008 04:37:10
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1529

Summary

Directory traversal vulnerability in Seagull Software Systems J Walk application server 3.2C9, and other versions before 3.3c4, allows remote attackers to read arbitrary files via a ".%252e" (encoded dot dot) in the URL.

Vulnerable Systems

Application

  • Seagull Software Systems J Walk Application Server 3.2c9


References

XF - jwalk-dotdot-directory-traversal(11623)

SECTRACK - 1006378

BID - 7160

OSVDB - 4927

SECUNIA - 8411

BUGTRAQ - 20030325 IRM 005: JWalk Application Server Version 3.2c9 Directory Traversal Vulnerability


Last Updated: 27 May 2016 10:38:24