← back
CVE-2011-0497

CVE-2011-0497

EPSS 2.2%
Directory traversal vulnerability in Sybase EAServer 6.x before 6.3 ESD#2, as used in Appeon, Replication Server Messaging Edition (RSME), and WorkSpace, allows remote attackers to read arbitrary files via "../\" (dot dot forward-slash backslash) sequences in a crafted request.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=889http://osvdb.org/70427http://secunia.com/advisories/42904https://exchange.xforce.ibmcloud.com/vulnerabilities/64695http://www.securityfocus.com/bid/45809http://www.sybase.com/detail?id=1091057http://www.vupen.com/english/advisories/2011/0125