Directory traversal vulnerability in ITAfrica WEBactive HTTP Server 1.00 allows remote malicious users to read arbitrary files via a .. (dot dot) in a URL.
source: wwwsecurityfocuscom/bid/2386/info
It is possible for a remote user to gain read access to directories and files outside the root directory of ITAfrica WEBactive Requesting a specially crafted URL composed of '/' sequences will disclose an arbitrary directory
target////scandisklog
^^ = Will obviously open the s ...