Seanox DevWex Windows Binary 1.2002.520 File Disclosure

2002-06-08T00:00:00
ID EDB-ID:21530
Type exploitdb
Reporter Kistler Ueli
Modified 2002-06-08T00:00:00

Description

Seanox DevWex Windows Binary 1.2002.520 File Disclosure. CVE-2002-0946. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/4978/info

The Seanox DevWex Windows binary version is prone to an issue which may cause arbitrary web-readable files to be disclosed to remote attackers. This problem occurs because DevWex does not sufficiently filter '..\' sequences from web requests. 

GET /..\..\..\..\anyfile