xweb 1.0 - Directory Traversal

Author: Donato Ferrante
type: remote
platform: linux
port: 
date_added: 2004-03-22 
date_updated: 2013-01-03 
verified: 1 
codes: CVE-2004-1838;OSVDB-4460 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/9937/info

XWeb is reportedly prone to directory traversal attacks. Remote attackers may exploit this issue to gain access to sensitive files outside of the server root. This would occur in the context of the server, i.e.: any files the server could access would also be accessible to the attacker.

http://www.example.com/../../../../etc/passwd