Title:Red Hat JBoss Undertow 目录遍历漏洞 (CVE-2014-7816) Description:Red Hat JBoss Undertow是美国红帽(Red Hat)公司的一款基于Java的嵌入式Web服务器,是Wildfly(Java应用服务器)默认的Web服务器。 Red Hat JBoss Undertow中存在目录遍历漏洞。当程序在Windows平台下运行时,远程攻击者可借助资源URI中的目录遍历字符‘..’利用该漏洞读取任意文件。以下版本受到影响:JBoss Undertow 1.0.16及之前版本,1.1.0 CR4及之前版本,1.2.0 Beta2及之前版本。
File Snapshot
None
Shenlong Bot has cached this for you
Remarks
1. It is advised to access via the original source first.2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.