Back to search
CVE-2008-5116
Published: Nov 18, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Directory traversal vulnerability in idm/includes/helpServer.jsp in Sun Java System Identity Manager 6.0 through 6.0 SP4, 7.0, and 7.1 allows remote attackers to read arbitrary files in the filesystem of the IDM server via directory traversal sequences in the ext parameter.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
243386
vendor-advisory
x_refsource_SUNALERT
32606
third-party-advisory
x_refsource_SECUNIA
sun-jsim-unspecified-security-bypass(46554)
vdb-entry
x_refsource_XF
20081119 PR08-09: Unauthenticated File Retrieval on Sun Java System Identity Manager "ext" parameter
mailing-list
x_refsource_BUGTRAQ
http://www.procheckup.com/Vulnerability_PR08-09.php
x_refsource_MISC
32262
vdb-entry
x_refsource_BID
ADV-2008-3128
vdb-entry
x_refsource_VUPEN
1021170
vdb-entry
x_refsource_SECTRACK
49767
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now