WebcamXP URL Directory Traversal Vulnerability Network Vulnerability

Summary

This host is installed with webcamXP and is prone to Directory Traversal Vulnerability.

Impact

Successful exploitation will allow attacker to execute malicious URL into the web browser in the attacking machine and can get sensitive information about the application or about the remote system. Impact Level: System/Application

Solution

Upgrade to webcamXP version 5.5.0.8 or later For updates refer to http://www.webcamxp.com

Insight

The flaw is due to improper handling of URL-encoded forward-slashes i.e, ../ which causes execution of malicious URI into the context of the application.

Affected

Darkwet, webcamXP version 5.3.2.410 and prior on Windows.

References

http://secunia.com/advisories/33257

Updated on 2017-03-28

Severity

Classification

CVE CVE-2008-5862

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache Rave User Information Disclosure Vulnerability
Andy's PHP Knowledgebase Multiple Cross-Site Scripting Vulnerabilities
@Mail 'admin.php' Cross-Site Scripting Vulnerabilities
Apache Struts Showcase Multiple Persistence Cross-Site Scripting Vulnerabilities
AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities

webcamXP URL Directory Traversal Vulnerability

Take action and discover your vulnerabilities