NuytsTech Security

CVE-2002-0543

by ·

Directory traversal vulnerability in Aprelium Abyss Web Server (abyssws) before 1.0.0.2 allows remote attackers to read files outside the web root, including the abyss.conf file, via URL-encoded .. (dot dot) sequences in the HTTP request.

Date published : 2003-04-02

http://www.securityfocus.com/bid/4466

http://archives.neohapsis.com/archives/bugtraq/2002-04/0110.html

Tags: