ChangshinSoft EZTrans Server Download.PHP Directory Traversal Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8155/info It has been reported that a problem in ChangshinSoft ezTrans Server exists in the download.php script that may allow an attacker to view arbitrary files. This may result in the disclosure of potentially sensitiv...

CSSoft-EZTRansI-Eng.txt

STG Security Advisory: SSA-20030701-03 ChangshinSoft ezTrans Server File Download Vulnerability Revision 1.1 Date Published: 2003-07-08 KST Last Update: 2003-07-08 Disclosed by SSR Team [email protected] Synopsis ======== ezTrans Server, used by famous portal sites in Korea, is a real-time...