Family: CGI abuses --> Category: infos
PHP Rocket Add-in File Traversal Vulnerability Scan
Vulnerability Scan Summary
Looks for a directory traversal vulnerability in the PHP Rocket Add-in for FrontPage.
Detailed Explanation for this Vulnerability Test
There is a vulnerability in the PHP Rocket Add-in for FrontPage
that allows a remote attacker to view the contents of any arbitrary
file to which the web user has access. This vulnerability exists
because the PHP Rocket Add-in does not filter out ../ and is therefore
susceptible to this directory traversal attack.
More Information: http://www.securityfocus.com/bid/3751
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.