Absolute path traversal vulnerability in file in Enigma2 Webinterface 1.6.0 up to and including 1.6.8, 1.6rc3, and 1.7.0 allows remote malicious users to read arbitrary files via a full pathname in the file parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dream-multimedia-tv enigma2 webinterface 1.6.3 |
||
dream-multimedia-tv enigma2 webinterface 1.6.4 |
||
dream-multimedia-tv enigma2 webinterface 1.6.5 |
||
dream-multimedia-tv enigma2 webinterface 1.6.6 |
||
dream-multimedia-tv enigma2 webinterface 1.6.7 |
||
dream-multimedia-tv enigma2 webinterface 1.6.0 |
||
dream-multimedia-tv enigma2 webinterface 1.6.2 |
||
dream-multimedia-tv enigma2 webinterface 1.6 |
||
dream-multimedia-tv enigma2 webinterface 1.6.1 |
||
dream-multimedia-tv enigma2 webinterface 1.6.8 |
||
dream-multimedia-tv enigma2 webinterface 1.7.0 |