CVE-2002-1417 Information

Description

Directory traversal vulnerability in Novell NetBasic Scripting Server (NSN) for Netware 5.1 and 6 and Novell Small Business Suite 5.1 and 6 allows remote attackers to read arbitrary files via a URL containing a ..5c\ sequence (modified dot-dot) which is mapped to the directory separator.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-08/0199.html http://support.novell.com/servlet/tidfinder/2963297 http://www.iss.net/security_center/static/9910.php http://www.securityfocus.com/bid/5523