← back
CVE-2005-3293

CVE-2005-3293

EPSS 3.5%
Xerver 4.17 allows remote attackers to (1) obtain source code of scripts via a request with a trailing "." (dot) or (2) list directory contents via a trailing null character.
Affected products
n/a · n/a
public PoCs found2
exploitdbwww.exploit-db.com/exploits/26375unverifiedexploitdbwww.exploit-db.com/exploits/26374unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/17243http://securitytracker.com/id?1015079https://exchange.xforce.ibmcloud.com/vulnerabilities/22785https://exchange.xforce.ibmcloud.com/vulnerabilities/22786http://www.osvdb.org/20075http://www.osvdb.org/20076http://www.securityfocus.com/bid/15135