CVE-2006-6865

SoftArtisans FileUp <5.0.14 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6865. PoCs published by Inge Henriksen.

AI-analyzed exploit summary This exploit leverages a Unicode encoding bypass in SoftArtisans FileUp's viewsrc.asp to disclose arbitrary file contents via directory traversal. The %c0%ae Unicode representation of '.' bypasses security checks, allowing access to files outside the intended directory.

Description

Directory traversal vulnerability in SAFileUpSamples/util/viewsrc.asp in SoftArtisans FileUp (SAFileUp) 5.0.14 allows remote attackers to read arbitrary files via a %c0%ae. (Unicode dot dot) in the path parameter, which bypasses the checks for ".." sequences.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Inge Henriksen · textwebappsasp

https://www.exploit-db.com/exploits/3046

View Code ZIP pw:eip

This exploit leverages a Unicode encoding bypass in SoftArtisans FileUp's viewsrc.asp to disclose arbitrary file contents via directory traversal. The %c0%ae Unicode representation of '.' bypasses security checks, allowing access to files outside the intended directory.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: SoftArtisans SAFileUp(TM) 5.0.14 (Standard)

No auth needed

Prerequisites: Access to the target web server · SAFileUpSamples virtual directory exposed

MITRE ATT&CK