IBM Security Directory Server 6.4.0 could allow a remote attacker to traverse directories on the system. An attacker could send a specially-crafted URL request containing «dot dot» sequences (/../) to view arbitrary files on the system. IBM X-Force ID: 228582.
