Description
EMC Navisphere Manager 6.4.1.0.0 allows remote attackers to list arbitrary directories via an HTTP request for a directory that ends in a "." (trailing dot).
References (4)
Core 4
Core References
Exploit, Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14487
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/16344
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1014629
Various Sources third-party-advisory
x_refsource_idefense
http://www.idefense.com/application/poi/display?id=288&type=vulnerabilities&flashstatus=true
Scores
EPSS
0.0048
EPSS Percentile
65.1%
Details
Status
published
Products (4)
emc/navisphere_manager
6.4
emc/navisphere_manager
6.4.1.0
emc/navisphere_manager
6.5
emc/navisphere_manager
6.6
Published
Aug 16, 2005
Tracked Since
Feb 18, 2026