CVE-2011-0966

Publication date

2011-05-20 22:00:00

Family

cisco

State

PUBLISHED

Description

Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.