Directory traversal vulnerability in data/config/image.do in NETGEAR Management System NMS300 1.5.0.11 and previous versions allows remote authenticated users to read arbitrary files via a .. (dot dot) in the realName parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
netgear prosafe network management software 300 1.5.0.11 |
Metasploit modules unleashed.
Two dangerous un-patched remote code execution vulnerabilities that allow access to God-mode system privileges have been reported in Netgear's ProSafe Network Management 300 management software. The file upload vulnerability (CVE-2016-1524) and restricted directory traversal (CVE-2016-1525) allow unauthenticated attackers to upload arbitrary files to the server's root web directory and access any file on servers. Carnegie Mellon University CERT analyst Joel Land says there is no known fix and re...