关键漏洞信息 Title: VideoFlow Digital Video Protection DVP 10 Authenticated Directory Traversal Advisory ID: ZSL-2018-5454 Type: Local/Remote Impact: Exposure of System Information, Exposure of Sensitive Information Risk: (4/5) Release Date: 31.03.2018 Summary VideoFlow's Digital Video Protection (DVP) product suffers from an authenticated arbitrary file disclosure vulnerability. Description Authenticated users can exploit the 'ID' parameter in Perl scripts to disclose arbitrary files via directory traversal attacks. Affected Version 2.10 (X-Prototype-Version: 1.6.0.2) Tested On CentOS release 5.6 (Final) (2.6.18-238.12.1.el5) CentOS release 5.10 (Final) (2.6.18-371.el5) Vendor Status Vulnerability discovered: 01.02.2018 Vendor contacted: 05.03.2018 No response from vendor: 30.03.2018 Public security advisory released: 31.03.2018 PoC videoflow_fd.txt Credits Vulnerability discovered by Gjoko Krstic - gjoko@zeroscience.mk