AOLserver.Directory.Traversal
Description
There is directory traversal vulnerability in AOLserver 3.2. It is possible for a remote user to gain read access to directories outside the root directory. Requesting a specially crafted URL composed of '.../' sequences will disclose an arbitrary directory.
Affected Products
AOLserver 3.2 Win32.
Impact
Unauthorized read access to directories outside the root directory.
Recommended Actions
Upgrade to AOLserver version 3.3 or newer.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |