Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Web BBS :: etc :: technot1.htm

Technote Directory traversal vulnerability



Vulnerability

    technote

Affected

    technote

Description

    'rasp' found following.  Technote a korean company sells something
    like a web-board called technote (surprise).  Not aware where this
    software is used outside korea, but at least _some_ versions (used
    ones) contain a file disclosure vuln.  Ex:

        http://students.washington.edu/~jaeyong/technote/technote/print.cgi?board=../../../../../../../../etc/passwd%00

Solution

    Nothing yet.


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH