3 matches found
CVE-2004-0578
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash // characters in a URL request to the wingate-internal directory...
CVE-2004-0578
WinGate 5.2.3 build 901 and 6.0 beta 2 build 942, and other versions such as 5.0.5, allows remote attackers to read arbitrary files via leading slash // characters in a URL request to the wingate-internal directory...
CVE-2004-0578
CVE-2004-0578 affects WinGate proxy/server software. Public records show an input-validation flaw in the wingate-internal path that allows remote attackers to read arbitrary files by using extra leading slashes in a URL (e.g., /wingate-internal/ and /wingate-internal//path). Affected versions inc...