Nokia IPSO 3.4.x - Voyager ReadFile.TCL Remote File Reading
| EKU-ID: 28009 | CVE: | OSVDB-ID: |
| Author: Jonas Eriksson | Published: 2003-04-24 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28009 | CVE: | OSVDB-ID: |
| Author: Jonas Eriksson | Published: 2003-04-24 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/7426/info It has been reported that Nokia IPSO does not properly handle some types of requests through Voyager. Because of this, an attacker with access to the interface may be able to view potentially sensitive information. http://www.example.com/cgi-bin/readfile.tcl?file=/etc/master.passwd