Directory traversal vulnerability in RobTex Viking Web server before 1.07-381 allows remote attackers to read arbitrary files via a hexadecimal encoded dot-dot attack (eg. http://www.server.com/%2e%2e/%2e%2e) in an HTTP URL request.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Viking_server | Robtex | 1.0.4 | 1.0.4 |
Viking_server | Robtex | 1.0.6 | 1.0.6 |
Viking_server | Robtex | 1.0.7 | 1.0.7 |
Viking_server | Robtex | * | 1.0.7_build381 |