oss-sec mailing list archives

Previous By Date Next
Previous By Thread Next

CVE request: weborf: directory traversal

From: Raphael Geissert <geissert () debian org>
Date: Thu, 16 Sep 2010 20:45:04 -0500
Hi,

A directory traversal vulnerability has been reported against weborf because 
of the mitigation code is not URL encoding-aware.

Reference:
http://www.exploit-db.com/exploits/14925/

Could a CVE be assigned?

Regards,
-- 
Raphael Geissert - Debian Developer
www.debian.org - get.debian.net
Previous By Date Next
Previous By Thread Next

Current thread: