|
| Description: | A file retieval is the way an attacker using any kind of hacking technic is allowed by a vulnerable system to retrieve documents, files, programs, and other archived data from anywhere on the network with or without having to establish a userid and password. For example by using the special userid of "anonymous", the network user will bypass local security checks and will have access to publicly accessible files on the remote system. Most of the Directory Listing attacks allow an attacker to perform a file retrieval. Example: A remote attacker can send a malformed URL containing %00 to trick a CGI script into retrieving any file off the system, regardless of the file's location or .htaccess permissions. |