Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2006-0513

5 documents5 sources
Severity
5.0MEDIUM
EPSS
16.7%
top 5.06%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
IBM Tivoli Access Manager FOR E-business
Timeline
PublishedFeb 6
Latest updateMay 1

Description

Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 5.1.0.10 in Tivoli Access Manager (TAM) 5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

NVDibm/tivoli_access_manager5.1.0.10, 6.0.0+1

Patches

Patch: secunia.comPatch: securitytracker.comPatch: www-1.ibm.com

🔴Vulnerability Details

2
GHSA
GHSA-whjv-77jx-425p: Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 52022-05-01
CVEList
CVE-2006-0513: Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 52006-02-06

💥Exploits & PoCs

1
Exploit-DB
IBM Tivoli Access Manager Plugin - Directory Traversal2006-02-04

💬Community

1
Bugzilla
CVE-2006-4519 GIMP multiple image loader integer overflows2007-07-10
CVE-2006-0513 (MEDIUM CVSS 5) | Directory traversal vulnerability i | cvebase.io