CVE-2001-0853 Information

Description

Directory traversal vulnerability in Entrust GetAccess allows remote attackers to read arbitrary files via a .. (dot dot) in the locale parameter to (1) helpwin.gas.bat or (2) AboutBox.gas.bat.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-11/0022.html http://marc.info/?l=bugtraq&m=100498111712723&w=2 http://www.kb.cert.org/vuls/id/243243 http://www.securityfocus.com/bid/3508 https://exchange.xforce.ibmcloud.com/vulnerabilities/7474