CVE-2004-2516
myserver < 0.7 - Directory Traversal via HTTP GET with ./ and ../ Sequences
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-2516. PoCs published by scrap.
AI-analyzed exploit summary The provided text describes a directory traversal vulnerability in MyServer 0.7, where insufficient sanitization of user-supplied input allows access to files outside the web root. The example HTTP GET request demonstrates the traversal technique using repeated './' sequences.
Description
Directory traversal vulnerability in myServer 0.7 allows remote attackers to list arbitrary directories via an HTTP GET command with a large number of "./" sequences followed by "../" sequences.
Exploits (1)
The provided text describes a directory traversal vulnerability in MyServer 0.7, where insufficient sanitization of user-supplied input allows access to files outside the web root. The example HTTP GET request demonstrates the traversal technique using repeated './' sequences.