An issue was discovered in FAUST iServer before 9.0.019.019.7. For each URL request, it accesses the corresponding .fau file on the operating system without preventing %2e%2e%5c directory traversal.Referenceshttps://sec-consult.com/vulnerability-lab/http://www.land-software.de/lfs.fau?prj=iweb&dn=faust+iserverhttp://packetstormsecurity.com/files/165701/FAUST-iServer-9.0.018.018.4-Local-File-Inclusion.html
