Showing 1 - 2 of 2

Files from Shmoov

First Active	2009-02-04
Last Active	2012-04-26

ACTi Web Configurator cgi-bin Directory Traversal: Posted Apr 26, 2012; Authored by Digital Defense, r@b13$, Shmoov | Site digitaldefense.net; The ACTi Web Configurator 3.0 for ACTi IP Surveillance Cameras contains a directory traversal vulnerability within the cgi-bin directory. An unauthenticated remote attacker can use this vulnerability to retrieve arbitrary files that are located outside the root of the web server.; tags | advisory, remote, web, arbitrary, cgi, root; SHA-256 | cd526d96e19262e3b3c0e25617019f84a594ac02d555f92b3a0491802618f9b0; Download | Favorite | View

Digital Defense VRT Advisory 2008.19: Posted Feb 4, 2009; Authored by Digital Defense, r@b13$, Shmoov | Site digitaldefense.net; The HP-ChaiSOE/1.0 embedded web server on certain HP JetDirect printers allows a potential attacker to gain read only access to directories and files outside of the web root. An attacker can leverage this flaw to read arbitrary system configuration files, cached documents, etc. Information obtained from an affected host may facilitate further attacks against the host. Exploitation of this flaw is trivial using common web server directory traversal techniques. Verified vulnerable systems include the HP JetDirect 2420 and the HP JetDirect 4250.; tags | advisory, web, arbitrary, root; SHA-256 | be8fa162c08d4f572bcb2aef847e724d081ab534467549eef582a0eda6be899e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days