| VID |
22321 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The RaidenHTTPD is vulnerable to a remote directory traversal vulnerability. RaidenHTTPD is a full featured web server for Microsoft Windows operating systems. RaidenHTTPD version 1.1.27 is vulnerable to this flaw. By sending a specially-crafted request GET request, a remote attacker could traverse directories located outside of the web root and view the contents of web server readable files.
* References:
http://archives.neohapsis.com/archives/bugtraq/2005-01/0414.html
http://www.securitytracker.com/alerts/2005/Feb/1013088.html
* Platforms Affected:
RaidenHTTPD Team, RaidenHTTPD 1.1.27
Microsoft Windows Any version |
| Recommendation |
Upgrade to the latest version of RaidenHTTPD (1.1.31 or later), available from the RaidenHTTPD Web page at http://www.raidenhttpd.com/en/index.html |
| Related URL |
(CVE) |
| Related URL |
12451 (SecurityFocus) |
| Related URL |
19228 (ISS) |
|
