Vulnerabilities > CVE-2006-0513 - Unspecified vulnerability in IBM Tivoli Access Manager for E-Business 5.1.0.10/6.0.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN ibm
exploit available
Summary
Directory traversal vulnerability in pkmslogout in Tivoli Web Server Plug-in 5.1.0.10 in Tivoli Access Manager (TAM) 5.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the filename parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | IBM Tivoli Access Manager Plugin Directory Traversal Vulnerability. CVE-2006-0513. Webapps exploit for cgi platform |
| id | EDB-ID:27163 |
| last seen | 2016-02-03 |
| modified | 2006-02-04 |
| published | 2006-02-04 |
| reporter | Timothy D. Morgan |
| source | https://www.exploit-db.com/download/27163/ |
| title | IBM Tivoli Access Manager Plugin Directory Traversal Vulnerability |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/041930.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-February/041930.html
- http://secunia.com/advisories/18725
- http://secunia.com/advisories/18725
- http://securityreason.com/securityalert/412
- http://securityreason.com/securityalert/412
- http://securitytracker.com/id?1015582
- http://securitytracker.com/id?1015582
- http://www.securityfocus.com/archive/1/423946/100/0/threaded
- http://www.securityfocus.com/archive/1/423946/100/0/threaded
- http://www.securityfocus.com/bid/16494
- http://www.securityfocus.com/bid/16494
- http://www.vsecurity.com/bulletins/advisories/2006/tam-file-retrieval.txt
- http://www.vsecurity.com/bulletins/advisories/2006/tam-file-retrieval.txt
- http://www.vupen.com/english/advisories/2006/0442
- http://www.vupen.com/english/advisories/2006/0442
- http://www-1.ibm.com/support/docview.wss?uid=swg24011562
- http://www-1.ibm.com/support/docview.wss?uid=swg24011562
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24485
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24485