thttpd 2.0.7 Directory Traversal (Windows)

This script is Copyright (C) 2004-2016 Tenable Network Security, Inc.

Synopsis :

The remote web server is vulnerable to a path traversal attack.

Description :

The remote web server fails to limit requests to items within the
document directory. An attacker may exploit this flaw to read
arbitrary files on the remote system with the privileges of the http

See also :

Solution :

Unknown at this time.

Risk factor :

Medium / CVSS Base Score : 5.0
CVSS Temporal Score : 5.0
Public Exploit Available : true

Family: Web Servers

Nessus Plugin ID: 14229 ()

Bugtraq ID: 10862

CVE ID: CVE-2004-2628

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now