CVE-2007-2048

N/A Unknown

Published: April 16, 2007 Modified: April 23, 2026

Description

Directory traversal vulnerability in /console in the Management Console in webMethods Glue 6.5.1 and earlier allows remote attackers to read arbitrary system files via a .. (dot dot) in the resource parameter.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/24933

Source: cve@mitre.org

http://securityreason.com/securityalert/2589

Source: cve@mitre.org

http://www.aushack.com/advisories/200704-webmethods.txt

Source: cve@mitre.org

Exploit

http://www.securityfocus.com/archive/1/465332/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/465993/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/467873/30/6720/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/23423

Source: cve@mitre.org

Exploit

http://www.securitytracker.com/id?1017926

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/1363

Source: cve@mitre.org

http://secunia.com/advisories/24933