Dino's Webserver File Disclosure Vulnerability

It has been reported that Dino's Webserver is vulnerable to a directory traversal attack. By appending encoded dot-dot-slash sequences (..%2f) in a request to the webserver, it is possible to access arbitrary web server readable files.


 

Privacy Statement
Copyright 2010, SecurityFocus