An issue exists in Ozeki NG SMS Gateway up to and including 4.17.6. By leveraging a path traversal vulnerability in the Autoreply module's Script Name, an attacker may write to or overwrite arbitrary files, with arbitrary content, usually with NT AUTHORITY\SYSTEM privileges.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ozeki ozeki ng sms gateway |