Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

bohttpd.vulnerability.txt

🗓️ 09 Aug 2000 00:00:00Reported by Hiromitsu TakagiType 
packetstorm
 packetstorm🔗 packetstormsecurity.com👁 24 Views

Brown Orifice HTTPD allows directory traversal, exposing files via HTTP requests on affected versions.

Code
`=====================================================  
Brown Orifice HTTPD Directory Traversal Vulnerability  
=====================================================  
  
Background  
----------  
Brown Orifice HTTPD (BOHTTPD) <http://www.brumleve.com/BrownOrifice/>  
is "a web server and file sharing tool" that runs as a Java Applet in  
Netscape Navigator.(*1) It was written by Dan Brumleve and was  
announced in BugTraq a few days ago.  
  
Problem Description  
-------------------  
Brumleve's demonstration page politely asks users to specify a  
directory on their computer for public access. However, by specifying  
"\.." in HTTP requests to the server, an attacker can navigate the  
server's file system and view/download any files. For example,  
http://your-ip-address:8080/C:/temp/\../  
or  
http://your-ip-address:8080/C:/temp/%5C../ (for Internet Explorer  
as a client)  
will display the contents of the root directory of C: drive of the  
server's computer.  
  
Affected versions and platforms  
-------------------------------  
This bug has been verified to be present on the BOHTTPD 0.1 in  
Netscape Navigator 4.72 for Windows.  
  
Workaround  
----------  
Do not use BOHTTPD. :-)  
  
  
(*1) This is also a security hole per se, as you know.  
  
Regards,  
--  
Hiromitsu Takagi  
Electrotechnical Laboratory  
http://www.etl.go.jp/~takagi/  
  
`

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
09 Aug 2000 00:00Current
7.4High risk
Vulners AI Score7.4
brown orificehttpd vulnerabilitydirectory traversalfile system exposurenetscape navigatorwindows version.
24