MiniWebsvr Encoded Traversal Arbitrary File Access

2007-02-12T00:24:38
ID OSVDB:33513
Type osvdb
Reporter OSVDB
Modified 2007-02-12T00:24:38

Description

Solution Description

Upgrade to version 0.0.7 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://miniwebsvr.sourceforge.net/ Vendor Specific News/Changelog Entry: http://sourceforge.net/project/shownotes.php?release_id=492667&group_id=187000 Mail List Post: http://attrition.org/pipermail/vim/2007-February/001315.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-02/0157.html ISS X-Force ID: 32451 CVE-2007-0919 Bugtraq ID: 22523