27 matches found
uc-http Daemon - Local File Inclusion Directory Traversal
uc-http Daemon - Local File Inclusion Directory Traversal ''' | \ | \ | | | | | | / \ | | | |/ / | |/ / | | | | | | | | | / / | | | / | / | | | | | | | | | | | | | | | |\ \ \ / / // / | | | /\ | | | | | / / / / / | | | \ | | / | | | / \ | | | | | \ | | | | \ \ / / | | | | | \ --. | | |...
XM tech security monitoring equipment, pre-uc-httpd server causes the presence of any directory traversal and local file inclusion vulnerabilities
0x01 vulnerability overview 1, the vendor information Manufacturer name: XM tech Official domain name: www.xiongmaitech.com Hangzhou XM Information Technology Co., Ltd. specialize in security monitoring, intelligent video independent research and development dedicated to security video monitoring...
XiongMai uc-http 1.0.0 Local File Inclusion / Directory Traversal
uc-httpd is an HTTP daemon used by a wide array of IoT devices and is vulnerable to local file inclusion and directory traversal bugs. +---------------------------------------------------------+ | Vulnerable Software: uc-httpd | | Vendor: XiongMai Technologies | | Vulnerability Type: LFI, Directo...
Directory traversal
XiongMai uc-httpd has directory traversal allowing the reading of arbitrary files via a "GET ../" HTTP request...
CVE-2017-7577
XiongMai uc-httpd has directory traversal allowing the reading of arbitrary files via a "GET ../" HTTP request...
CVE-2017-7577
XiongMai uc-httpd has directory traversal allowing the reading of arbitrary files via a "GET ../" HTTP request...
CVE-2017-7577
CVE-2017-7577 affects XiongMai uc-httpd. A directory traversal vulnerability allows reading arbitrary files via a GET ../ HTTP request. Connected sources document the flaw and impact (read access; no public exploit details provided); remediation/patch information is not specified in the supplied ...