RSS   Vulnerabilities for 'Pssecure'   RSS

2005-04-20
 
CVE-2005-1244

 

 
** DISPUTED ** Directory traversal vulnerability in the third party tool from NetIQ, as used to secure the iSeries AS/400 FTP server, allows remote attackers to access arbitrary files, including those from qsys.lib, via ".." sequences in a GET request. NOTE: the vendor has disputed this issue, saying that "neither NetIQ Security Manager nor our iSeries Security Solutions are vulnerable."

 

 >>> Vendor: Netiq 15 Products
Pssecure
Edirectory
Privileged user manager
Sentinel
Sentinel agent manager
Security manager
Access manager
Security solutions for iseries
Self service password reset
Access governance suite
Sentinel server
Imanager
Privileged account manager
Identity manager
Identity reporting


Copyright 2019, cxsecurity.com

 

Back to Top