Back to search
CVE-2011-0497
Published: Jan 20, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
Directory traversal vulnerability in Sybase EAServer 6.x before 6.3 ESD#2, as used in Appeon, Replication Server Messaging Edition (RSME), and WorkSpace, allows remote attackers to read arbitrary files via "../\" (dot dot forward-slash backslash) sequences in a crafted request.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
easerver-unspec-file-include(64695)
vdb-entry
x_refsource_XF
42904
third-party-advisory
x_refsource_SECUNIA
http://www.sybase.com/detail?id=1091057
x_refsource_CONFIRM
45809
vdb-entry
x_refsource_BID
70427
vdb-entry
x_refsource_OSVDB
20110110 Sybase EAServer Remote Directory Traversal Vulnerability
third-party-advisory
x_refsource_IDEFENSE
ADV-2011-0125
vdb-entry
x_refsource_VUPEN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now