IWeb Server URL Directory Traversal Vulnerability Network Vulnerability

Summary

iWeb Server is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. Exploiting this issue allows an attacker to access files outside of the web servers root directory. Successfully exploiting this issue will allow attackers to gain access to sensitive information.

References

http://www.ashleybrown.co.uk/iweb/
http://www.securityfocus.com/bid/37228

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-4053

CVSS	Base Score: 4.0 AV:N/AC:L/Au:S/C:N/I:P/A:N

Related Vulnerabilities

HttpBlitz Server HTTP Request Remote Denial of Service Vulnerability
IIS IDA/IDQ Path Disclosure
IIS 5.0 Sample App reveals physical path of web root
Apache Directory Listing
IBM WebSphere Application Server Admin Console Cross-site Scripting Vulnerability

iWeb Server URL Directory Traversal Vulnerability

Take action and discover your vulnerabilities