AnalogX SimpleServer:WWW 1.0.6 - Directory Traversal
| EKU-ID: 25677 | CVE: CVE-2000-0664;OSVDB-388 | OSVDB-ID: |
| Author: Foundstone Inc. | Published: 2000-07-26 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 25677 | CVE: CVE-2000-0664;OSVDB-388 | OSVDB-ID: |
| Author: Foundstone Inc. | Published: 2000-07-26 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/1508/info Requesting a specially formed url containing encoding (%2E) to SimpleServer 1.06 and possibley earlier versions, will enable a remote user to gain read access to known files above the SimpleServer directory. http://target/%2E%2E/filename