Multiple directory traversal vulnerabilities in Borland Web Server (BWS) 1.0b3 and previous versions allow remote malicious users to read and download arbitrary files via (1) multi-dot "......" sequences, or (2) "%5c%2e%2e" (encoded "\..") sequences, in the URL.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
borland software web server for corel paradox |