QuickFront 1.0 - File Disclosure

2003-04-09T00:00:00
ID EXPLOITPACK:F14850DFDB0CB17C5E2B1D6AAE879951
Type exploitpack
Reporter Jan Kachlik
Modified 2003-04-09T00:00:00

Description

QuickFront 1.0 - File Disclosure

                                        
                                            source: https://www.securityfocus.com/bid/7308/info

A vulnerability has been reported for QuickFront that will result in the disclosure of sensitive system resources to remote attackers.

QuickFront does not properly sanitize user-supplied input. Specifically, directory traversal sequences such as '../' to HTTP requests are not removed.

http://<target>/../../../../../boot.ini