Robin Twombly A1 HTTP Server 1.0 - Directory Traversal
| EKU-ID: 26205 | CVE: CVE-2001-0286;OSVDB-6761 | OSVDB-ID: |
| Author: slipy | Published: 2001-02-27 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 26205 | CVE: CVE-2001-0286;OSVDB-6761 | OSVDB-ID: |
| Author: slipy | Published: 2001-02-27 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/2436/info It is possible for a remote user to gain read access to directories and files outside the web root. Requesting a specially crafted URL composed of '../' sequences will disclose an arbitrary directory, appending the known filename will disclose the requested resource. http://target/../../../../../../Scandisk.log