Methodus 3 Web Server File Disclosure Vulnerability

Javier Perez 13.06.2003 Verified
Remote Exploits Windows

Exploit Code

source: http://www.securityfocus.com/bid/7908/info

The Methodus 3 Web Server component is prone to a file disclosure vulnerability. It is possible for remote attackers to retrieve resources outside of the web root directory via directory traversal attacks. This could potentially be exploited to gain access to sensitive files on a system hosting the vulnerable software.

http://www.example.com/../../../windows/win.ini