[28165] in bugtraq

home	help	back	first	fref	pref	prev	next	nref	lref	last	post

daemon@ATHENA.MIT.EDU (luca.ercoli@inwind.it)
Wed Dec 11 19:28:47 2002

Date: Sun,  8 Dec 2002 20:15:51 +0100
Message-Id: <H6TEUF$4E27BF6220517B7675D27A5748736AA3@libero.it>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
From: "luca.ercoli@inwind.it" <luca.ercoli@inwind.it>
To: "=?iso-8859-1?Q?bugtraq?=" <bugtraq@securityfocus.com>
Content-Transfer-Encoding: 8bit

Summary: Enceladus Server Suite is an internet/intranet lightweight web
and ftp server for windows.

Details: The web server has been found to contain a security flaw that
allows attackers to travers up the root directory and view/download
files on the system.

Vulnerable System: Enceladus Server Suite version 2.6.1

Example: http://host/../

From Luca Ercoli luca.ercoli@inwind.it

home	help	back	first	fref	pref	prev	next	nref	lref	last	post