- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 33832
- Проверка EDB
-
- Пройдено
- Автор
- JON HART
- Тип уязвимости
- WEBAPPS
- Платформа
- PHP
- CVE
- cve-2009-4511
- Дата публикации
- 2010-04-12
Код:
source: https://www.securityfocus.com/bid/39389/info
TANDBERG Video Communication Server is prone to multiple remote vulnerabilities, including:
1. A file-disclosure vulnerability.
2. A security vulnerability that may allow attackers to conduct server impersonation and man-in-middle attacks.
3. An authentication-bypass vulnerability.
An attacker can exploit these issues to gain unauthorized access to the affected device and to gain access to sensitive information. Other attacks are also possible.
Firmware versions prior to TANDBERG Video Communication Server 5.1.1 are vulnerable.
https://www.example.com/helppage.php?page=../../../../etc/passwd%00
- Источник
- www.exploit-db.com