2005-12-13 11:00:00
mitre
PUBLISHED
Multiple directory traversal vulnerabilities in LogiSphere 0.9.9j allow remote attackers to access arbitrary files via (1) .. (dot dot), (2) "..." (triple dot), and (3) "..//" sequences in the URL, (4) "../" sequences in the source parameter to viewsource.jsp, or (5) ".." (dot dot backslash) sequences in the NS-query-pat parameter to the search URL. URL.