CVE-2000-0739 Information

Description

Directory traversal vulnerability in strong.exe program in NAI Net Tools PKI server 1.0 before HotFix 3 allows remote attackers to read arbitrary files via a .. (dot dot) attack in an HTTPS request to the enrollment server.

Reference

http://archives.neohapsis.com/archives/bugtraq/2000-07/0473.html http://download.nai.com/products/licensed/pgp/hf3pki10.txt http://www.osvdb.org/1489 http://www.securityfocus.com/bid/1537 https://exchange.xforce.ibmcloud.com/vulnerabilities/5066