Home » Hacking News » Beck GmbH [email protected] HTTPD File Disclosure Vulnerability
Beck GmbH [email protected] HTTPD File Disclosure Vulnerability
by platon on May 27th, 2001 The [email protected] is a single-chip embedded webserver from Beck GmbH...
By default, the device's inbuilt httpd service uses the system root as its webroot. An attacker may request and obtain arbitrary files anywhere in the filesystem, including those containing sensitive information such as user IDs and passwords.
This leads to a complete compromise of the device's security, and could allow a remote attacker to undermine its normal operation.
This vulnerability was reported to bugtraq by Siberian