CVE-2003-0676 | Vulnerability Database | Aqua Security

Directory traversal vulnerability in ViewLog for iPlanet Administration Server 5.1 (aka Sun ONE) allows remote attackers to read arbitrary files via ..%2f (partially encoded dot dot) sequences.

Affected Software

Name	Vendor	Start Version	End Version
Iplanet_directory_server	Sun	5.0 (including)	5.0 (including)
Iplanet_directory_server	Sun	5.1 (including)	5.1 (including)
Iplanet_directory_server	Sun	5.1-sp1 (including)	5.1-sp1 (including)
Iplanet_directory_server	Sun	5.1-sp2 (including)	5.1-sp2 (including)
One_directory_server	Sun	5.0 (including)	5.0 (including)
One_directory_server	Sun	5.0-sp1 (including)	5.0-sp1 (including)
One_directory_server	Sun	5.0_sp2 (including)	5.0_sp2 (including)
One_directory_server	Sun	5.1 (including)	5.1 (including)
One_directory_server	Sun	5.1-sp1 (including)	5.1-sp1 (including)
One_directory_server	Sun	5.1-sp2 (including)	5.1-sp2 (including)

References

http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2
http://marc.info/?l=bugtraq\u0026m=106036588613929\u0026w=2

NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0676
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html