We provide a full range of hardware and software support based services, onsite and off-site including Monitoring services, Remote management and Service level support. | SeleniumServer FTP Server Multiple Command Traversal Arbitrary File Access |
| Wednesday, 15 November 2006 | |
|
SeleniumServer contains a flaw that allows a remote attacker to list and download files outside of the web path. The issue is due to the FTP Server properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the 'DIR'(LIST or NLST), 'GET'(RETR), and 'PUT'(STOR) variables. Read more... |