Lucene search
PRIOn knowledge basePRION:CVE-2016-1525HistoryFeb 13, 2016 - 2:59 a.m.
Directory traversal
2016-02-1302:59:00
PRIOn knowledge base
www.prio-n.com
1
Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and earlier allows remote authenticated users to read arbitrary files via a … (dot dot) in the realName parameter.
| CPE | Name | Operator | Version |
|---|---|---|---|
| prosafe_network_management_software_300 | eq | 1.5.0.11 |
References
packetstormsecurity.com/files/135618/Netgear-Pro-NMS-300-Code-Execution-File-Download.html
packetstormsecurity.com/files/135999/NETGEAR-ProSafe-Network-Management-System-300-Arbitrary-File-Upload.html
seclists.org/fulldisclosure/2016/Feb/30
www.kb.cert.org/vuls/id/777024
www.rapid7.com/db/modules/exploit/windows/http/netgear_nms_rce
www.securityfocus.com/archive/1/537446/100/0/threaded
www.exploit-db.com/exploits/39412/
www.exploit-db.com/exploits/39515/
Related
cve
cve
CVE-2016-1525
2016-02-13 02:59:10
nvd
nvd
CVE-2016-1525
2016-02-13 02:59:10
zdt
zdt
cvelist
cvelist
CVE-2016-1525
2016-02-13 02:00:00
packetstorm
packetstorm
NETGEAR ProSafe Network Management System 300 Arbitrary File Upload
2016-02-29 00:00:00
Netgear Pro NMS 300 Code Execution / File Download
2016-02-07 00:00:00
exploitpack
exploitpack
NETGEAR NMS300 ProSafe Network Management System - Multiple Vulnerabilities
2016-02-04 00:00:00
cert
cert
checkpoint_advisories
checkpoint_advisories
thn
thn
Critical Flaws Found in NETGEAR Network Management System
2016-02-05 01:16:00
exploitdb
exploitdb
Netgear NMS300 ProSafe Network Management System - Multiple Vulnerabilities
2016-02-04 00:00:00