Watson Management Console Directory Traversal Vulnerability Network Vulnerability

Summary

It has been found that Watson Management Console is prone to a directory traversal vulnerability. The issue is due to the server's failure to properly validate user supplied http requests. This issue may allow an attacker to escape the web server root directory and view any web server readable files. Information acquired by exploiting this issue may be used to aid further attacks against a vulnerable system.

References

http://www.exploit-db.com/exploits/23995/
http://www.securityfocus.com/bid/57237

Updated on 2015-03-25

Severity

Classification

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Atlassian JIRA FishEye and Crucible Plugins XML Parsing Unspecified Security Vulnerability
Ajax File and Image Manager 'data.php' PHP Code Injection Vulnerability
Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
Admbook PHP Code Injection Flaw

Take action and discover your vulnerabilities