Description

Directory traversal vulnerability in Apache 1.3.29 and earlier, and Apache 2.0.48 and earlier, when running on Cygwin, allows remote attackers to read arbitrary files via a URL containing "..%5C" (dot dot encoded backslash) sequences.

Remediation

References

CVE-2004-0173

Related Vulnerabilities

WordPress Plugin Gmedia Photo Gallery Multiple Cross-Site Scripting Vulnerabilities (1.18.4)

phpMyAdmin Other Vulnerability (CVE-2006-3388)

SharePoint CVE-2022-30159 Vulnerability (CVE-2022-30159)

WordPress Plugin Simple Photo Gallery Cross-Site Scripting (1.8.0)

Oracle Database Server CVE-2012-0520 Vulnerability (CVE-2012-0520)

Severity

Medium

Classification

CVE-2004-0173

Tags

Missing Update Known Vulnerabilities