NComputing vSpace Pro NC Monitor Server Directory Traversal Vulnerability

NComputing vSpace Pro is a suite of virtualized desktop software from NComputing, Inc. in the U.S. NC Monitor Server is one of the monitor servers. A security vulnerability exists in the NcMonitorServer.exe file of NC Monitor Server in NComputing vSpace Pro versions 10 and 11. A remote attacker c...

Ncomputing vSPace Pro 10 / 11 Directory Traversal

Exploit Title: Ncomputing vSpace Pro v10 and v11 - Directory Traversal Vulnerability Date: 2018-04-20 Software Vendor: NComputing Software Link: Author: Javier Bernardo CVE: CVE-2018-10201 Category: Webapps Description It is possible to read arbitrary files outside the root directory of the web...

Ncomputing vSpace Pro 10/11 - Directory Traversal

Exploit Title: Ncomputing vSpace Pro v10 and v11 - Directory Traversal Vulnerability Date: 2018-04-20 Software Vendor: NComputing Software Link: Author: Javier Bernardo Contact: [email protected] Website: http://www.kwell.net CVE: CVE-2018-10201 Category: Webapps Description It is possible to read...

CVE-2018-10201

An issue was discovered in NcMonitorServer.exe in NC Monitor Server in NComputing vSpace Pro 10 and 11. It is possible to read arbitrary files outside the root directory of the web server. This vulnerability could be exploited remotely by a crafted URL without credentials, with .../ or ...\ or...

CVE-2018-10201

An issue was discovered in NcMonitorServer.exe in NC Monitor Server in NComputing vSpace Pro 10 and 11. It is possible to read arbitrary files outside the root directory of the web server. This vulnerability could be exploited remotely by a crafted URL without credentials, with .../ or ...\ or...

CVE-2018-10201

CVE-2018-10201 affects NComputing vSpace Pro 10 and 11 via NcMonitorServer.exe (NC Monitor Server). A directory-traversal flaw allows remote attackers to read arbitrary files outside the web root by sending crafted URLs to TCP port 8667 (no credentials required). Supporting sources describe vulne...