CVE-2003-0676

3 documents3 sources
Severity
5.0MEDIUM
EPSS
0.3%
top 44.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
SUN Iplanet Directory ServerSUN ONE Directory Server
Timeline
PublishedAug 27
Latest updateApr 29

Description

Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDsun/one_directory_server5.0, 5.0_sp2, 5.1+2

🔴Vulnerability Details

2
GHSA
GHSA-pj54-3c7w-56ww: Directory traversal vulnerability in ViewLog for iPlanet Administration Server 52022-04-29
CVEList
CVE-2003-0676: Directory traversal vulnerability in ViewLog for iPlanet Administration Server 52003-08-14
CVE-2003-0676 (MEDIUM CVSS 5) | Directory traversal vulnerability i | cvebase.io