CVE-2001-0123 Information

Description

Directory traversal vulnerability in eXtropia bbs_forum.cgi 1.0 allows remote attackers to read arbitrary files via a .. (dot dot) attack on the file parameter.

Reference

http://marc.info/?l=bugtraq&m=97905792214999&w=2 http://www.extropia.com/hacks/bbs_security.html http://www.osvdb.org/3546 http://www.securityfocus.com/bid/2177 https://exchange.xforce.ibmcloud.com/vulnerabilities/5906