Description
The view-source CGI program allows remote attackers to read arbitrary files via a .. (dot dot) attack.
Affected products
- netscape / communicator4.0 – 4.0
- netscape / communicator4.05 – 4.05
- netscape / communicator4.5 – 4.5
- netscape / communicator4.06 – 4.06
- netscape / communicator4.6 – 4.6
- netscape / communicator4.07 – 4.07
- netscape / communicator4.51 – 4.51