CVE-2002-1525 Information

Description

Directory traversal vulnerability in ASTAware SearchDisk engine for Sun ONE Starter Kit 2.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on port (1) 6015 or (2) 6016 or (3) an absolute pathname to port 6017.

Reference

http://online.securityfocus.com/archive/1/293545 http://www.iss.net/security_center/static/10225.php http://www.securityfocus.com/bid/5828