[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#390555: CVE-2006-5050: Directory traversal vulnerability in httpd in busybox



Package: busybox
Severity: grave
Tags: security
Justification: user security hole


A vulnerability has been found in busybox:

Directory traversal vulnerability in httpd in Rob Landley BusyBox
allows remote attackers to read arbitrary files via URL-encoded
"%2e%2e/" sequences in the URI.

Please mention the CVE id in the changelog.



Reply to: