漏洞类别:Web server漏洞等级: 
漏洞信息
Sedum HTTP Server is a server designed for Internet and Intranet environments.
Unauthorized remote users may succeed in gaining read access to known files outside the root directory. Requesting a specially crafted URL composed of "../" or ".../" sequences to a host running SEDUM HTTP Server will disclose the requested file.
漏洞危害
Successful exploitation of this vulnerability could lead to the disclosure of sensitive information, which could then be used to aid in further attacks against the host.
解决方案
We are not aware of any vendor-supplied patches for this issue. For more information, visit Sedum's Web site.
0day
文章评论