CVE-2011-0345

N/A Unknown

Published: March 08, 2011 Modified: April 29, 2026

Description

Directory traversal vulnerability in the NMS server in Alcatel-Lucent OmniVista 4760 R5.1.06.03 and earlier allows remote attackers to read arbitrary files via directory traversal sequences in HTTP GET requests, related to the lang variable.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://seclists.org/fulldisclosure/2011/Mar/8

Source: cve@mitre.org

http://secunia.com/advisories/43507

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/8122

Source: cve@mitre.org

http://www.alcatel-lucent.com/wps/DocumentStreamerServlet?LMSG_CABINET=Corporate&LMSG_CONTENT_FILE=Support/Security/2011002.pdf

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/archive/1/516768/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/46624

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2011/0548

Source: cve@mitre.org

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/65848

Source: cve@mitre.org

http://seclists.org/fulldisclosure/2011/Mar/8