Vulnerabilities > CVE-2005-1239 - Unspecified vulnerability in Raz-Lee Security+++
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Directory traversal vulnerability in the third party tool from Raz-Lee, as used to secure the iSeries AS/400 FTP server, allows remote attackers to access arbitrary files, including those from qsys.lib, via ".." sequences in a GET request. Fix is available on http://www.razlee.com/
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |