Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Sentinel Protection Server 7.x/Keys Server 1.0.x - Backslash Directory Traversal

Related Vulnerabilities: CVE-2008-0760  
Publish Date: 11 Feb 2008
Author: Luigi Auriemma
Source / Download Exploit 
                							

                source: http://www.securityfocus.com/bid/27735/info

Sentinel Protection Server and Keys Server are prone to a directory-traversal vulnerability because the software fails to sufficiently sanitize user-supplied input data.

Exploiting this issue may allow an attacker to access sensitive information that could aid in further attacks.

This issue affects Protection Server 7.4.1.0 and Keys Server 1.0.4; earlier versions may also be vulnerable.

NOTE: This issue may be caused by an incomplete security patch released in November 2007 that was documented in BID 26583 ('Sentinel Protection Server/Keys Server Directory Traversal Vulnerability'). 

GET /..\..\..\..\..\..\..\boot.ini HTTP/1.0

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started