4D WebServer v6.5.7 Directory Traversal Vulnerability

4D WebServer is a client/server database management system with integrated web development and serving.

Version 6.5.7 of the 4D WebServer software running on the Microsoft Windows NT platform contains a file traversal vulnerability. A remote user can submit a properly constructed HTTP request in order to view arbitrary files on the host system.

This could allow an attacker to obtain sensitive or confidential information which could be used to mount further attacks upon the host.


Privacy Statement
Copyright 2010, SecurityFocus