CVE-2002-0908 Information

Description

Directory traversal vulnerability in the web server for Cisco IDS Device Manager before 3.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTPS request.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-05/0214.html http://www.iss.net/security_center/static/9174.php http://www.securityfocus.com/bid/4760