Design/Logic Flaw

IBM Filenet Content Manager Component 5.5.8.0, 5.5.10.0, and 5.5.11.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences /../ to view arbitrary files on the system. IBM X-Force ID: 261115...

PT-2024-2156 · Ibm · Ibm Filenet Content Manager

Name of the Vulnerable Software and Affected Versions: IBM Filenet Content Manager Component versions 5.5.8.0 through 5.5.11.0 Description: The issue is related to incorrect restriction of a directory path name with limited access. This could allow a remote attacker to traverse directories on the...