Vulnerabilities > CVE-2002-0347 - Directory Traversal File Reading vulnerability in SUN Cobalt RAQ 2, Cobalt RAQ 3I and Cobalt RAQ 4

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

sun

NVD

Published: 2002-06-25

Updated: 2016-10-18

Summary

Directory traversal vulnerability in Cobalt RAQ 4 allows remote attackers to read password-protected files, and possibly files outside the web root, via a .. (dot dot) in an HTTP request.

Vulnerable Configurations

Part	Description	Count
Hardware	Sun SUN Cobalt RAQ 2 * SUN Cobalt RAQ 3I * SUN Cobalt RAQ 4 *	3

References

http://marc.info/?l=bugtraq&m=101495944202452&w=2
http://www.iss.net/security_center/static/8322.php
http://www.securityfocus.com/bid/4208