Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbTodor DonevEDB-ID:36286
HistoryNov 04, 2011 - 12:00 a.m.

DreamBox DM800 - 'file' Local File Disclosure

2011-11-0400:00:00
Todor Donev
www.exploit-db.com
16

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/50520/info

DreamBox DM800 is prone to a local file-disclosure vulnerability because it fails to adequately validate user-supplied input.

Exploiting this vulnerability would allow an attacker to obtain potentially sensitive information from local files on computers running the vulnerable application. This may aid in further attacks.

DreamBox DM800 versions 1.5rc1 and prior are vulnerable. 

http://www.example.com/file/?file=[LFD]

Related

cvelist 1
exploitdb 2
prion 1
nvd 1
cve 1
cvelist
cvelist
CVE-2011-4716
2011-12-08 19:00:00
exploitdb
exploitdb
DreamBox DM800 - Arbitrary File Download
2011-06-21 00:00:00
DreamBox DM800 1.5rc1 - File Disclosure
2011-11-04 00:00:00
prion
prion
Directory traversal
2011-12-08 19:55:00
nvd
nvd
CVE-2011-4716
2011-12-08 19:55:08
cve
cve
CVE-2011-4716
2011-12-08 19:55:08

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:36286
cvelist1exploitdb2prion1nvd1cve1