vendor:
BOA web server
by:
llmora
N/A
CVSS
N/A
Arbitrary file access
CWE
Product Name: BOA web server
Affected Version From: v0.94.8.2
Affected Version To: v0.94.8.2
Patch Exists: YES
Related CWE:
CPE:
Platforms Tested: Unix
2000
Vulnerability in BOA web server v0.94.8.2
There is a security bug in BOA v0.94.8.2 that allows a malicious user to access files outside the document root of the web server as the user the server runs as.
Mitigation:
Unknown