NEWLOG NetSupport Manager Directory Traversal Vulnerability

info
discussion
exploit
solution
references

NEWLOG NetSupport Manager Directory Traversal Vulnerability

It has been reported that NetSupport Manager is subject to directory traversal attacks.

Submitting a request for a known file along with '../' sequences, will reveal the requested resource.

As a result, remote users may be able to disclose the contents of known files.