Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Quik-Serv Web Server Arbitrary File Disclosure Vulnerability

Quik-Serv Web Server Arbitrary File Disclosure Vulnerability

by Nikola Strahija on April 5th, 2002 It is possible for a remote user to gain access to arbitrary files on a vulnerable system. The Quik-Serv web server does not properly handle requests containing dot-dot-slash (../) requests. This could make it possible for a remote user to view files accessible by the web server process.


Quik-Serv web server is a free web server for the Microsoft Windows platform. It is distributed and maintained by Deep Forest Software.

Remote: Yes

Exploit: This vulnerability may be exploited with a web browser.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »