CVE-2003-0940

2003-11-2105:00:00

mitre

www.cve.org

vulnerability

sap db

web-tools

directory traversal

remote attackers

arbitrary files

url

AI Score

6.7

Confidence

Low

EPSS

0.027

Percentile

90.6%

JSON

Directory traversal vulnerability in sqlfopenc for web-tools in SAP DB before 7.4.03.30 allows remote attackers to read arbitrary files via … (dot dot) sequences in a URL.

References

www.atstake.com/research/advisories/2003/a111703-2.txt