Cherokee Directory Traversal Vulnerability Network Vulnerability

Summary

Cherokee is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks. Cherokee 0.5.4 and prior versions are vulnerable.

References

http://freetexthost.com/ncyss3plli
http://www.alobbs.com/modules.php?op=modload&name=cherokee&file=index
http://www.securityfocus.com/bid/36874

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3902

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Herberlin Bremsserver Directory Traversal Vulnerability
Acme thttpd and mini_httpd Terminal Escape Sequence in Logs Command Injection Vulnerability
Apache Tomcat Request Object Security Bypass Vulnerability (Win)
IIS 5.0 Sample App reveals physical path of web root
iWeb Server URL Directory Traversal Vulnerability

Take action and discover your vulnerabilities