Wsmp3D · Wsmp3D · CVE-2003-0338
Name of the Vulnerable Software and Affected Versions:
WsMp3d versions 0.0.10 and earlier
Description:
A directory traversal issue in the WsMp3 daemon allows remote attackers to read and execute arbitrary files by using .. (dot dot) sequences in HTTP requests, such as "GET /../" or "POST /../".
Recommendations:
For versions 0.0.10 and earlier, update to a version later than 0.0.10 to resolve the issue.