Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Mozilla Firefox < 0.0.9 'Plain Old Webserver' (POW) Directory Traversal Arbitrary File Access (deprecated)



The remote host is vulnerable to a directory traversal flaw.


The remote host is running Plain Old Webserver (POW), a Firefox plugin that allows the user to run a web server via a browser plugin. This version of POW is vulnerable to a directory traversal flaw. An attacker exploiting this flaw would send a malformed request that contained '../' strings. Such a request would allow the attacker to obtain confidential files from outside the web root directory. Successful exploitation would lead to the loss of confidential data.


Upgrade to version 0.0.9 or higher.