Fastraq Mailtraq 1.1.4 – Multiple Path Vulnerabilities

Fastraq Mailtraq 1.1.4 – Multiple Path Vulnerabilities

漏洞ID 1053442 漏洞类型
发布时间 2000-03-22 更新时间 2000-03-22
图片[1]-Fastraq Mailtraq 1.1.4 – Multiple Path Vulnerabilities-安全小百科CVE编号 N/A
图片[2]-Fastraq Mailtraq 1.1.4 – Multiple Path Vulnerabilities-安全小百科CNNVD-ID N/A
漏洞平台 Windows CVSS评分 N/A
|漏洞来源
https://www.exploit-db.com/exploits/19973
|漏洞详情
漏洞细节尚未披露
|漏洞EXP
source: http://www.securityfocus.com/bid/1278/info

A remote user may browse any known directory on a host running Fastraq Mailtraq 1.1.4 by making a URL request that includes the '../' string.

In addition, requesting a URL appended with "../" and an unusually long character string will return an error message disclosing the full path of the Mailtraq installation directory. 

Directory traversal vulnerability:
http: //target/../../knowndirectory/

Path disclosure vulnerability:
http: //target/../<very long character string>

相关推荐: Debian GNU/Linux 2.1 apcd Symlink Vulnerability

Debian GNU/Linux 2.1 apcd Symlink Vulnerability 漏洞ID 1104385 漏洞类型 Race Condition Error 发布时间 2000-02-01 更新时间 2000-02-01 CVE编号 N/A C…

© 版权声明
THE END
喜欢就支持一下吧
点赞0
分享