IQID:21927 HTTP Karel IP Phone IP1211 cgiServer.exx - 'page' Directory Traversal S

IQID: 21927 - October 2020

Karel IP Phone IP1211 could allow a remote authenticated attacker to traverse directories on the system. An attacker could send a specially-crafted URL request to the cgiServer.exx script containing "dot dot" sequences (/../) in the page parameter to view arbitrary files on the system.

A Full Description is available for this threat, please sign in for access to Full Description.

 

Attack Data

Attack Data is available for this threat, please sign in for access to Attack Data.

 

CVSS Information

CVSS Information is available for this threat, please sign in for access to CVSS Information.

 

External Resources

External resources are available for this threat, please sign in for access to external resources.