RSS   Vulnerabilities for 'Enigma2 webinterface'   RSS

2012-02-07
 
CVE-2012-1025

CWE-22
 

 
Absolute path traversal vulnerability in file in Enigma2 Webinterface 1.6.0 through 1.6.8, 1.6rc3, and 1.7.0 allows remote attackers to read arbitrary files via a full pathname in the file parameter.

 
 
CVE-2012-1024

CWE-22
 

 
Directory traversal vulnerability in file in Enigma2 Webinterface 1.5rc1 and 1.5beta4 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter.

 

 >>> Vendor: Dream-multimedia-tv 6 Products
Dreambox dm800 hd pvr firmware
Dreambox dm800 hd se firmware
Dreambox dm800 hd pvr
Dreambox dm800 hd se
Enigma2 webinterface
Dreambox dm500-s firmware


Copyright 2024, cxsecurity.com

 

Back to Top