• caglararli@hotmail.com
  • 05386281520

Sensitive path: Is it possible to exploit any particular attack? [closed]

Çağlar Arlı      -    28 Views

Sensitive path: Is it possible to exploit any particular attack? [closed]

During a web application penetration test, while attempting to access a system resource (win.ini), I encountered a specific 404 error. The server revealed certain sensitive information in the process.

Physical Path   
C:\inetpub\wwwroot\webProd\webWebApp\PO\windows\win.ini\
Logon Method       Anonymous
Logon User     Anonymous

Thanks to the information returned by the server, can I manage to obtain something interesting? I tried to check if the web app was vulnerable to path traversal, but I couldn't obtain anything.