漏洞类别:Web server漏洞等级: 
漏洞信息
BRS WebWeaver is a freeware program including a Web server and an FTP server developed by Blaine Southam. BRS WebWeaver contains several vulnerabilities that allow remote users to obtain sensitive information.
The Web server has a directory traversal vulnerability that allows a remote user to gain access to files contained outside of the Web root directory. Sensitive information obtained from these files could aid in further attacks against the system.
漏洞危害
By successfully exploiting this vulnerability, remote unauthorized users could access files contained outside of the Web root directory. Sensitive information obtained from these files could be used to further compromise the system.
解决方案
Upgrade to WebWeaver Version 0.63 (or later). You can download WebWeaver from Blaine Southam's Web site.
0day
文章评论