Sybase EAServer 6.3.1 Developer Edition Directory Traversal Vulnerability

Sybase EAServer 6.3.1 Developer Edition Directory Traversal Vulnerability

CVE-2011-2474 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in the HTTP Server in Sybase EAServer 6.3.1 Developer Edition allows remote attackers to read arbitrary files via a /.\../\../\ sequence in a path.

Learn more about our Cis Benchmark Audit For Server Software.