Directory traversal vulnerability in Apache 1.3.29 and previous versions, and Apache 2.0.48 and previous versions, when running on Cygwin, allows remote malicious users to read arbitrary files via a URL containing "..%5C" (dot dot encoded backslash) sequences.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
apache http server 0.8.11 |
||
apache http server 0.8.14 |
||
apache http server 1.0 |
||
apache http server 1.0.2 |
||
apache http server 1.0.3 |
||
apache http server 1.0.5 |
||
apache http server 1.1 |
||
apache http server 1.1.1 |
||
apache http server 1.2 |
||
apache http server 1.2.5 |
||
apache http server 1.3 |