CVE-2003-0676

Published: Aug 27, 2003Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via "..%2f" (partially encoded dot dot) sequences.

Affected (10)

Products: Sun: Iplanet Directory Server, One Directory Server

Sun

2 products

Iplanet Directory Server

One Directory Server

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Sun Iplanet Directory Server	Version 5.0
Sun Iplanet Directory Server	Version 5.1
Sun Iplanet Directory Server	Version 5.1 sp1
Sun Iplanet Directory Server	Version 5.1 sp2
Sun One Directory Server	Version 5.0
Sun One Directory Server	Version 5.0 sp1
Sun One Directory Server	Version 5.0_sp2
Sun One Directory Server	Version 5.1
Sun One Directory Server	Version 5.1 sp1
Sun One Directory Server	Version 5.1 sp2

References (2)

http://marc.info/?l=bugtraq&m=106036588613929&w=2

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=106036588613929&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.