Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » QuickFront file disclosure vulnerability

QuickFront file disclosure vulnerability

by Mario Miri on April 14th, 2003 QuickFront software can be exploited for information disclosure attacks. This is due to improper sanitization of user-supplied data. Directory traversal is possible.t


Vulnerable:
Matriks QuickFront 1.0.0.189


Exploit / Proof of concept:
http://download.xatrix.org/prf/quickfront.txt


Solution:
A newer versions of the software are not vulnerable to this attack. Users are urged to upgrade.


Discovered by:
Jan Kachlik, [email protected]


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »