Directory Traversal Vulnerability in iPlanet Web Server and Netscape Enterprise Server on Windows Platforms

Directory Traversal Vulnerability in iPlanet Web Server and Netscape Enterprise Server on Windows Platforms

CVE-2002-1042 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in search engine for iPlanet web server 6.0 SP2 and 4.1 SP9, and Netscape Enterprise Server 3.6, when running on Windows platforms, allows remote attackers to read arbitrary files via ..\ (dot-dot backslash) sequences in the NS-query-pat parameter.

Learn more about our Web App Pen Testing.