CVE-2001-0982

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
23/07/2001
Last modified:
03/04/2025

Description

Directory traversal vulnerability in IBM Tivoli WebSEAL Policy Director 3.01 through 3.7.1 allows remote attackers to read arbitrary files or directories via encoded .. (dot dot) sequences containing "%2e" strings.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:ibm:tivoli_secureway_policy_director:3.0.1:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_secureway_policy_director:3.6:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_secureway_policy_director:3.7:*:*:*:*:*:*:*
cpe:2.3:a:ibm:tivoli_secureway_policy_director:3.7.1:*:*:*:*:*:*:*