header-logo
Suggest Exploit
vendor:
MegaBrowser
by:
SecurityFocus
8.3
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: MegaBrowser
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: No
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2003

The MegaBrowser HTTP server component is prone to a file disclosure vulnerability

MegaBrowser is prone to a file disclosure vulnerability due to a directory traversal attack. Attackers can use directory traversal sequences to break out of the web root directory and gain access to files that are readable by the web server.

Mitigation:

Ensure that the web server is configured to restrict access to files outside of the web root directory.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7802/info

The MegaBrowser HTTP server component is prone to a file disclosure vulnerability. Directory traversal sequences may be used to break out of the web root directory. Attackers may gain access to files that are readable by the web server as a result.

http://www.example.com/../../../../../WINNT/repair/sam

Navigation

Suggest Exploit

Services By CQR