info
discussion
exploit
solution
references
Falcon Web Server Directory Traversal Vulnerability
Using the string '../' in a URL, an attacker can gain read access to any file outside of the intended web-published filesystem thta is readable by the webserver.
Privacy Statement
Copyright 2010, SecurityFocus
