Velocity Security Management System HTTP Server Directory Traversal Vulnerability
BID:30261
Info
Velocity Security Management System HTTP Server Directory Traversal Vulnerability
| Bugtraq ID: | 30261 |
| Class: | Input Validation Error |
| CVE: |
CVE-2008-7084 |
| Remote: | Yes |
| Local: | No |
| Published: | Jul 16 2008 12:00AM |
| Updated: | May 07 2015 05:27PM |
| Credit: | Digital Security Research Group |
| Vulnerable: |
Hirsch Electronics Velocity Security Management System 1.0 |
| Not Vulnerable: | |
Discussion
Velocity Security Management System HTTP Server Directory Traversal Vulnerability
Velocity Security Management System is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the application's HTTP server.
Exploiting this issue will allow an attacker to view arbitrary local files within the context of the webserver. Information harvested may aid in launching further attacks.
Velocity Security Management System 1.0 is vulnerable; other versions may also be affected.
Velocity Security Management System is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input. This issue occurs in the application's HTTP server.
Exploiting this issue will allow an attacker to view arbitrary local files within the context of the webserver. Information harvested may aid in launching further attacks.
Velocity Security Management System 1.0 is vulnerable; other versions may also be affected.
Exploit / POC
Velocity Security Management System HTTP Server Directory Traversal Vulnerability
An attacker can exploit this issue via a browser.
The following example URI is available:
http://www.example.com:[port]/../../../../../../../../../../../../../etc/passwd
An attacker can exploit this issue via a browser.
The following example URI is available:
http://www.example.com:[port]/../../../../../../../../../../../../../etc/passwd
Solution / Fix
Velocity Security Management System HTTP Server Directory Traversal Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Velocity Security Management System HTTP Server Directory Traversal Vulnerability
References:
References:
- Velocity Homepage (Hirsch Electronics)
- [DSECRG-08-028] File read in Velocity web-server (Alexandr Polyakov