CIS WebServer 3.5.13 - Directory Traversal

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1054930 漏洞类型
发布时间 2005-02-25 更新时间 2005-02-25
CVE编号 N/A CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/25163
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/12662/info

A vulnerability has been identified in the handling of certain types of requests by CIS WebServer. Because of this, it is possible for an attacker to gain access to potentially sensitive system files.

The problem is in the handling of directory traversal strings. This issue could be exploited to gain read access to files on a host using the vulnerable software. 

http://www.example.com/../../../windows/repair/sam