header-logo
Suggest Exploit
vendor:
DMS
by:
Unknown
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: DMS
Affected Version From: 1.0.2
Affected Version To: Unknown
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Directory Traversal Vulnerability in DMS

DMS is susceptible to a directory traversal vulnerability. The issue occurs when requesting files outside the webroot of the application using hex-encoded directory traversal character sequences to create a relative path to the target file. This vulnerability allows a remote attacker to retrieve potentially sensitive files, potentially aiding them in further system compromise.

Mitigation:

Upgrade to a patched version of the software.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/11057/info

It is reported that DMS is susceptible to a directory traversal vulnerability.

The directory traversal issue is present upon requesting files outside the webroot of the application using hex encoded directory traversal character sequences to create a relative path to the target file.

This vulnerability will allow a remote attacker to retrieve potentially sensitive files, possibly aiding them in further system compromise.

Version 1.0.2 of the software is reported vulnerable to this issue. Other versions may also be affected. 

http://www.example.com/%2E%2E%5Csystem.log
http://www.example.com/%2E%2E\system.log

Navigation

Suggest Exploit

Services By CQR