Directory traversal vulnerability in CodeBrws.asp in Microsoft IIS 5.0 allows remote malicious users to view source code and determine the existence of arbitrary files via a hex-encoded "%c0%ae%c0%ae" string, which is the Unicode representation for ".." (dot dot).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft internet information services 5.0 |