WebcamXP URL Directory Traversal Vulnerability Network Vulnerability

Summary

This host is installed with webcamXP and is prone to Directory Traversal Vulnerability.

Impact

Successful exploitation will allow attacker to execute malicious URL into the web browser in the attacking machine and can get sensitive information about the application or about the remote system. Impact Level: System/Application

Solution

Upgrade to webcamXP version 5.5.0.8 or later For updates refer to http://www.webcamxp.com

Insight

The flaw is due to improper handling of URL-encoded forward-slashes i.e, ../ which causes execution of malicious URI into the context of the application.

Affected

Darkwet, webcamXP version 5.3.2.410 and prior on Windows.

References

http://secunia.com/advisories/33257

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5862
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Adobe JRun Management Console Multiple Vulnerabilities
3Com NBX VoIP NetSet Detection
AbanteCart Multiple Cross-Site Scripting Vulnerabilities
7Media Web Solutions EduTrac Directory Traversal Vulnerability
aeNovo Database Content Disclosure Vulnerability

webcamXP URL Directory Traversal Vulnerability

Take action and discover your vulnerabilities