VqServer Web Traversal Vulnerability Network Vulnerability

Summary

vqSoft's vqServer web server (version 1.9.9 and below) has been detected. This version contains a security vulnerability that allows attackers to request any file, even if it is outside the HTML directory scope. For more information: http://www.securiteam.com/windowsntfocus/Some_Web_servers_are_still_vulnerable_to_the_dotdotdot_vulnerability.html

Solution

Upgrade to the latest version, available from: http://www.vqsoft.com.

Severity

Classification

CVE CVE-2000-0240

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

WinTFTP Server Pro Remote Directory Traversal Vulnerability
Subversion Module unreadeable path information disclosure
Mailman private.py Directory Traversal Vulnerability
WebLogic Server /%00/ bug
VMware Products Directory Traversal Vulnerability

vqServer web traversal vulnerability

Take action and discover your vulnerabilities