vqsoft vqserver for windows 1.9.9 - Directory Traversal
| EKU-ID: 25401 | CVE: CVE-2000-0240;OSVDB-270 | OSVDB-ID: |
| Author: Johan Nilsson | Published: 2000-03-21 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 25401 | CVE: CVE-2000-0240;OSVDB-270 | OSVDB-ID: |
| Author: Johan Nilsson | Published: 2000-03-21 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/1067/info Some versions of vqSoft vqServer for Windows are vulnerable to the common ../../ method of retrieving known files from outside of the web directory structure, accomplished by appending a variable number of "../" and a known filename to an HTTP GET request. http://target/../../../../../autoexec.bat