Belkin Wemo Home Automation Devices 'peerAddresses' API XML External Entity Injection Vulnerability

Belkin Wemo Home Automation devices are prone to an XML External Entity injection vulnerability because the application fails to properly sanitize user-supplied input before using it in dynamically generated content.

Attackers can exploit this issue to gain sensitive information of the system files.


 

Privacy Statement
Copyright 2010, SecurityFocus