Description
Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2008-2605 Vulnerability (CVE-2008-2605)
XWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-32731)
PostgreSQL Missing Authorization Vulnerability (CVE-2024-4317)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-3630)
WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65)