- directory traversal / slash escape
- Posted by .merlin on August 29th, 2003
Hello,
I ve tested my website using an automatised web security scanner
(nikto) which told me the service is vulnerable to directory traversal.
The example request:
http://site/_vti_bin/..%252f..%252f....32/cmd.exe?/c+
This test was made on a winnt4 server, with iis and frontpage installed,
with windows update regularly checked and patched if needed.
1) Do I have to consider this a real risk or not ?
2) Considering the web server root is on another disk than the system,
I always thought it was impossible to switch to another disk through
that kind of commands. Is this true or not ?
Any answer appreciated ; )
..merlin
Similar Posts
- NAT traversal problem with Messenger RA. (MSN Messenger) by Richard Jones
- Re: OT: Substitute Character for Slash in URL (Software & Applications) by Donnie Russell
- Re: OT: Substitute Character for Slash in URL (Software & Applications) by Donnie Russell
- Win NT Driver for USB Slash Disk? (Computers & Technology) by John
- anyone heard of /escape vulnerability ? (Computer Security) by .Saphyr
