- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 31149
- Проверка EDB
-
- Пройдено
- Автор
- LUIGI AURIEMMA
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- cve-2008-0760
- Дата публикации
- 2008-02-11
Код:
source: https://www.securityfocus.com/bid/27735/info
Sentinel Protection Server and Keys Server are prone to a directory-traversal vulnerability because the software fails to sufficiently sanitize user-supplied input data.
Exploiting this issue may allow an attacker to access sensitive information that could aid in further attacks.
This issue affects Protection Server 7.4.1.0 and Keys Server 1.0.4; earlier versions may also be vulnerable.
NOTE: This issue may be caused by an incomplete security patch released in November 2007 that was documented in BID 26583 ('Sentinel Protection Server/Keys Server Directory Traversal Vulnerability').
GET /..\..\..\..\..\..\..\boot.ini HTTP/1.0- Источник
- www.exploit-db.com
