|
Essentia Web Server Directory Traversal Vulnerability
Essentia Web Server is a multi-threaded HTTP server designed for Microsoft Windows environments. Essentia is maintained by Essen. A vulnerability has been reported in Essentia Web Server 2.1 (and possibly other versions) which may allow a remote attacker to view arbitrary files. Reportedly, Essentia does not adequately filter '../' sequences from web requests, making it prone to directory traversal attacks. This vulnerability could be exploited to effectively disclose any file on a host running the affected software. |
|
 Privacy Statement |
