Guido Frassetto SEDUM HTTP Server 2.0 - Directory Traversal
| EKU-ID: 26156 | CVE: CVE-2001-0199;OSVDB-14797 | OSVDB-ID: |
| Author: Joe Testa | Published: 2001-02-04 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 26156 | CVE: CVE-2001-0199;OSVDB-14797 | OSVDB-ID: |
| Author: Joe Testa | Published: 2001-02-04 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/2335/info A remote user could gain read access to known files outside of the root directory in a SEDUM HTTP Server. Requesting a specially crafted URL composed of '../' or '.../' sequences will disclose the requested file. http://target/../[file outside web root] http://target/.../[file outside web root]