Security Advisory

CVE-2009-3902

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-11-06 15:00:00

Last updated 2024-08-07 06:45:50

Assigner mitre

State PUBLISHED

Description

Directory traversal vulnerability in Cherokee Web Server 0.5.4 and earlier for Windows allows remote attackers to read arbitrary files via a /.. (slash backslash dot dot) in the URL.

← Browse all CVEs View on cve.org ↗