CVE-2014-6154 Information

Description

Directory traversal vulnerability in IBM Optim Performance Manager for DB2 4.1.0.1 through 4.1.1 on Linux UNIX and Windows and IBM InfoSphere Optim Performance Manager for DB2 5.1 through 5.3.1 on Linux UNIX and Windows allows remote attackers to access arbitrary files via a .. (dot dot) in a URL.

Reference

http://www-01.ibm.com/support/docview.wss?uid=swg21696000 https://exchange.xforce.ibmcloud.com/vulnerabilities/97677