Encoded directory traversal vulnerability in Dino's web server 2.1 allows remote attackers to read arbitrary files via ".." (dot dot) sequences with URL-encoded (1) "/" (%2f") or (2) "\" (%5c) characters.
References
Configurations
History
No history.
Information
Published : 2002-10-04 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-1133
Mitre link : CVE-2002-1133
CVE.ORG link : CVE-2002-1133
JSON object : View
Products Affected
funsoft
- dinos_webserver
CWE