GWeb HTTP Server 0.50.6 - Directory Traversal

2004-02-24T00:00:00
ID EXPLOITPACK:AD7423A96DAA5CC74B76BC3A24F511FB
Type exploitpack
Reporter Donato Ferrante
Modified 2004-02-24T00:00:00

Description

GWeb HTTP Server 0.50.6 - Directory Traversal

                                        
                                            source: https://www.securityfocus.com/bid/9742/info

It has been reported that GWeb is prone to a directory traversal vulnerability. The issue is due to the server's failure to properly validate user supplied http requests.

This issue may allow an attacker to escape the web server root directory and view any web server readable files. Information acquired by exploiting this issue may be used to aid further attacks against a vulnerable system.

https://github.com/offensive-security/exploitdb-bin-sploits/raw/master/bin-sploits/23758.zip