vendor:
TwonkyMedia Server
by:
Sven Fassbender
7.5
CVSS
HIGH
Directory Traversal
22
CWE
Product Name: TwonkyMedia Server
Affected Version From: 7.0.11
Affected Version To: 8.5
Patch Exists: YES
Related CWE: CVE-2018-7171
CPE: a:twonky:twonky_server
Metasploit:
N/A
Other Scripts:
N/A
Platforms Tested: None
2018
TwonkyMedia Server 7.0.11-8.5 Directory Traversal
TwonkyMedia Server 7.0.11-8.5 is vulnerable to directory traversal, which allows an attacker to read arbitrary files on the system with the web server privileges. The vulnerability exists due to insufficient validation of user-supplied input in the "getfile" parameter of the "/rpc/get_file" script. A remote attacker can send a specially crafted HTTP request containing directory traversal sequences (e.g. "..%2f") to read arbitrary files on the system with the web server privileges.
Mitigation:
Update to the latest version of TwonkyMedia Server.
