https://www.exploit-db.com/exploits/23147
https://www.securityfocus.com/bid/87738
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200310-011

Nokia提供称为NED的WEB文档接口。NokiaElectronicDocumentation(NED)没有正确处理用户提供的URI数据，远程攻击者可以利用这个漏洞获得目录路径信息。攻击者只要简单在NED的’location’参数后增加’.’号，就会导致服务器返回包含WEB-ROOT目录的路径信息，攻击者可以利用这些信息进一步对系统进行攻击。

source: http://www.securityfocus.com/bid/8624/info

Nokia Electronic Documentation (NED) is prone to a vulnerability that may enable remote attackers to list directory contents. This issue may be exploited by appending a dot (.) to a request for a NED page. Exploitation will also have the side-effect of disclosing the path to the directory.

This issue was reported for NED installations hosted on WebLogic application servers. It is not known if NED is prone to the same behavior when hosted on other servers. It should be noted that although this vulnerability has been reported to affect Nokia Electronic Documentation version 5.0, previous versions might also be affected. 

http://www.example.com/docs/NED?action=retrieve&location=.

Nokia Electronic Documentation 5.0

来源:ATSTAKE
名称:A091503-1
链接:http://www.atstake.com/research/advisories/2003/a091503-1.txt