CVE-2003-1463

Name of the Vulnerable Software and Affected Versions Alt-N Technologies WebAdmin versions 2.0.0 through 2.0.2

Description The issue allows remote attackers with administrator privileges to determine the installation path by reading the contents of the Name parameter in a link and read arbitrary files via an absolute path in the Name parameter.

Recommendations For versions 2.0.0 through 2.0.2, consider restricting access to the Name parameter to prevent absolute path traversal until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.