bb-hostsvc.sh in Big Brother 1.4h1 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) attack on the HOSTSVC parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
sean macguire big brother 1.0 |
||
sean macguire big brother 1.4 |
||
sean macguire big brother 1.4g |
||
sean macguire big brother 1.3 |
||
sean macguire big brother 1.3b |
||
sean macguire big brother 1.09b |
||
sean macguire big brother 1.09c |
||
sean macguire big brother 1.09d |
||
sean macguire big brother 1.4h |
||
sean macguire big brother 1.4h1 |
||
sean macguire big brother 1.1 |
||
sean macguire big brother 1.2 |