Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2002-08-31T04:00:00
Updated: 2024-08-08T03:12:16.865Z
Reserved: 2002-08-27T00:00:00
Link: CVE-2002-1042
Vulnrichment
No data.
NVD
Status : Modified
Published: 2002-10-04T04:00:00.000
Modified: 2024-11-20T23:40:27.553
Link: CVE-2002-1042
Redhat
No data.