CVE-2013-5756

2014-08-03T14:55:04
ID CVE-2013-5756
Type cve
Reporter NVD
Modified 2014-08-04T10:08:02

Description

Directory traversal vulnerability in Yealink VoIP Phone SIP-T38G allows remote authenticated users to read arbitrary files via a .. (dot dot) in the page parameter to cgi-bin/cgiServer.exx.