Directory traversal vulnerability in Sun Chili!Soft ASP on multiple Unixes allows a remote attacker to read arbitrary files above the web root via a ‘..’ (dot dot) attack in the sample script ‘codebrws.asp’.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Chilisoft |
Sun |
* |
3.5.2 |
References