cpe:/a:cherokee:cherokee_httpd:0.5.4 CVE-2009-3902 2009-11-06T10:30:00.687-05:00 2017-08-16T21:31:19.443-04:00 5.0 NETWORK LOW NONE PARTIAL NONE NONE http://nvd.nist.gov 2009-11-09T07:19:00.000-05:00 BID 36874 SECUNIA 37183 OSVDB 59588 VUPEN ADV-2009-3091 XF cherokee-http-dir-traversal(54024) MISC http://freetexthost.com/ncyss3plli MISC http://pocoftheday.blogspot.com/2009/10/cherokee-web-server-054-directory.html Directory traversal vulnerability in Cherokee Web Server 0.5.4 and earlier for Windows allows remote attackers to read arbitrary files via a /\.. (slash backslash dot dot) in the URL.