Falcon Web Server Directory Traversal Vulnerability

Using the string '../' in a URL, an attacker can gain read access to any file outside of the intended web-published filesystem thta is readable by the webserver.


 

Privacy Statement
Copyright 2010, SecurityFocus