Glossary Description

Arbitrary File Reading

Description:

To let anyone read any file on a system is very dangerous. First, it gives the attacker the opportunity of reading information that should not be read, and furthermore, it gives him the opportunity of discovering information, which can lead to a gain root. Thus an attacker may read /etc/passwd file on a Unix system, for instance.

© 2003-2007 NexantiS Corporation (www.securescout.com)
SecureScout is a trademark of NexantiS
All Rights Reserved
All products names referenced herein are trademarks of their respective companies

SecureScout products are certified:
CVE Compatible
SANS TOP 20 Compatible
CVSS Compatible (Common Vulnerability Scoring System)