Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0513

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0513
Last Modified 07 Mar 2011 09:30:13
Published 06 Feb 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0513

Summary

Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 5.1.0.10 in Tivoli Access Manager (TAM) 5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.

Vulnerable Systems

Application

  • Ibm Tivoli Access Manager For E-business 5.1.0.10

  • Ibm Tivoli Access Manager For E-business 6.0.0


References

MISC - http://www.vsecurity.com/bulletins/advisories/2006/tam-file-retrieval.txt

BUGTRAQ - 20060203 VSR Advisory: IBM Tivoli Access Manager - Web Server Plug-in File Retrieval Vulnerability

AIXAPAR - IY79724

SECTRACK - 1015582

SECUNIA - 18725

VUPEN - ADV-2006-0442

XF - tivoli-pkmslogout-directory-traversal(24485)

BID - 16494

SREASON - 412


Last Updated: 27 May 2016 10:41:40