sap internet graphics server 6.40 - Directory Traversal
| EKU-ID: 31354 | CVE: | OSVDB-ID: |
| Author: Martin O'Neal | Published: 2005-07-25 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 31354 | CVE: | OSVDB-ID: |
| Author: Martin O'Neal | Published: 2005-07-25 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/14369/info Internet Graphics Server is affected by a directory traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. A remote unauthorized user can disclose the contents of arbitrary local files through the use of directory traversal strings '../'. Exploitation of this vulnerability could lead to a loss of confidentiality. http://host/htdocs/../../../../../../../../../../../../etc/passwd