oss-sec mailing list archives
Re: CVE request: weborf: directory traversal
From: Josh Bressers <bressers () redhat com>
Date: Fri, 17 Sep 2010 14:28:14 -0400 (EDT)
Please use CVE-2010-3306 Thanks. -- JB ----- "Raphael Geissert" <geissert () debian org> wrote:
Hi, A directory traversal vulnerability has been reported against weborf because of the mitigation code is not URL encoding-aware. Reference: http://www.exploit-db.com/exploits/14925/ Could a CVE be assigned? Regards, -- Raphael Geissert - Debian Developer www.debian.org - get.debian.net
Current thread:
- CVE request: weborf: directory traversal Raphael Geissert (Sep 16)
- Re: CVE request: weborf: directory traversal Josh Bressers (Sep 17)