Summary
iWeb Server is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue allows an attacker to access files outside of the web servers root directory. Successfully exploiting this issue will allow attackers to gain access to sensitive information.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2009-4053 -
CVSS Base Score: 4.0
AV:N/AC:L/Au:S/C:N/I:P/A:N
Related Vulnerabilities
- Apache Tomcat Hash Collision Denial Of Service Vulnerability
- httpdx Space Character Remote File Disclosure Vulnerability
- IBM Rational Quality Manager and Rational Test Lab Manager Tomcat Default Account Vulnerability
- Acritum Femitter Server HTTP Request Remote File Disclosure Vulnerability
- IBM WebSphere Application Server IVT Cross Site Scripting Vulnerability