Computer Security
[EN] securityvulns.ru no-pyccku


nostromo nhttpd directory traversal
Published:16.03.2011
Source:
SecurityVulns ID:11505
Type:remote
Threat Level:
5/10
Description:Directory traversal (including code execution via CGI) with escaped URI.
Affected:NOSTROMO : nhttpd 1.9
CVE:CVE-2011-0751 (Directory traversal vulnerability in nhttpd (aka Nostromo webserver) before 1.9.4 allows remote attackers to execute arbitrary programs or read arbitrary files via a ..%2f (encoded dot dot slash) in a URI.)
Original documentdocumentRedTeam Pentesting, [RT-SA-2011-001] nostromo nhttpd directory traversal leading to arbitrary command execution (16.03.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod