exploit-db-mirror/platforms/linux/remote/26024.txt
Offensive Security fffbf04102 Updated
2013-12-03 19:44:07 +00:00

7 lines
No EOL
505 B
Text
Executable file

source: http://www.securityfocus.com/bid/14369/info
Internet Graphics Server is affected by a directory traversal vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
A remote unauthorized user can disclose the contents of arbitrary local files through the use of directory traversal strings '../'. Exploitation of this vulnerability could lead to a loss of confidentiality.
http://host/htdocs/../../../../../../../../../../../../etc/passwd