mailing list archives
Directory traversal & authentication bypass of Trendnet TV-IP201
From: opticfiber <opticfiber () topsight net>
Date: Tue, 16 Feb 2010 16:41:42 -0500
simply go to http://ipaddress of
These cams use an embedded version of GoAhead WebServer which is
vulnerable to the above attack because they don't correctly filter URL
encoded substitutions for the '/' character. Original vulnerability
and further explanation posted here:
Genius is one percent inspiration and ninety-nine percent perspiration.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- Directory traversal & authentication bypass of Trendnet TV-IP201 opticfiber (Feb 16)