gweb http server 0.5/0.6 - Directory Traversal Vulnerability

ID EDB-ID:23758
Type exploitdb
Reporter Donato Ferrante
Modified 2004-02-24T00:00:00


GWeb HTTP Server 0.5/0.6 Directory Traversal Vulnerability. CVE-2004-0349 . Remote exploit for windows platform


It has been reported that GWeb is prone to a directory traversal vulnerability. The issue is due to the server's failure to properly validate user supplied http requests.

This issue may allow an attacker to escape the web server root directory and view any web server readable files. Information acquired by exploiting this issue may be used to aid further attacks against a vulnerable system.