- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 19601
- Проверка EDB
-
- Пройдено
- Автор
- USSR LABS
- Тип уязвимости
- REMOTE
- Платформа
- WINDOWS
- CVE
- cve-1999-1509
- Дата публикации
- 1999-11-04
etype eserv 2.50 - Directory Traversal
Код:
source: https://www.securityfocus.com/bid/773/info
Etype's Eserv product is designed to be a one-source internet connectivity solution, incorporating mail, web, ftp, and proxy servers into one package. The web server will allow remote browsing of the entire filesystem by the usage of ../ strings in the URL. This gives an attacker read access to every file on the server's filesystem that the webserver has access to.
http://victim.com/../../../autoexec.bat- Источник
- www.exploit-db.com
