Summary
The Linksys Wireless Internet Camera contains a CGI that allows remote attackers to disclosue sensitive files stored on the server.
An attacker may use this CGI to disclosue the password file and from it the password used by the root use (the MD5 value).
Severity
Classification
-
CVE CVE-2004-2508 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
- Apache Open For Business HTML injection vulnerability
- appRain CMF 'uploadify.php' Remote Arbitrary File Upload Vulnerability
- AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities
- Adobe ColdFusion Multiple Path Disclosure Vulnerabilities