CVE-2001-1266 Information

Description

Directory traversal vulnerability in Doug Neal’s HTTPD Daemon (DNHTTPD) before 0.4.1 allows remote attackers to view arbitrary files via a .. (dot dot) attack using the dot hex code ‘2E’.

Reference

http://archives.neohapsis.com/archives/apps/freshmeat/2001-07/0002.html http://dnhttpd.sourceforge.net/changelog.html