Directory Browsing Vulnerability in IBM DB2 Tools 2.3.0 for z/OS

Directory Browsing Vulnerability in IBM DB2 Tools 2.3.0 for z/OS

CVE-2011-4435 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The web-server component in the Consolidation and Analysis Engine (CAE) Server in DB2 Query Monitor in IBM DB2 Tools 2.3.0 for z/OS does not prevent directory browsing, which allows remote attackers to obtain sensitive information via HTTP requests.

Learn more about our Cis Benchmark Audit For Ibm Db2.