Privacy Violation :Directory Traversal/Browsing:Remediation Technique

Document ID : KB000010737
Last Modified Date : 14/02/2018
Show Technical Document Details
Introduction:

How to configure CA SSO web agent to prevent directory traversal ?

Background:

The Path Traversal attack technique allows an attacker access to files, directories, and commands that potentially reside outside the web document root directory. An attacker may manipulate a URL in such a way that the web site will execute or reveal the contents of arbitrary files anywhere on the web server. Any device that exposes an HTTP-based interface is potentially vulnerable to Path Traversal.

Environment:
CA SSO Web Agent : ANY
Instructions: