Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Beck GmbH [email protected] HTTPD File Disclosure Vulnerability

Beck GmbH [email protected] HTTPD File Disclosure Vulnerability

by platon on May 27th, 2001 The [email protected] is a single-chip embedded webserver from Beck GmbH...



By default, the device's inbuilt httpd service uses the system root as its webroot. An attacker may request and obtain arbitrary files anywhere in the filesystem, including those containing sensitive information such as user IDs and passwords.

This leads to a complete compromise of the device's security, and could allow a remote attacker to undermine its normal operation.

This vulnerability was reported to bugtraq by Siberian on May 24, 2001.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »