Keene Digital Media Server < 1.0.4 Directory Traversal and Authentication Bypass
Medium Nessus Network Monitor Plugin ID 2165
SynopsisThe remote host is vulnerable to multiple attack vectors.
DescriptionThe remote host is running Keene Digital Media Server, a web application for Microsoft Windows designed to share media files on the Internet. The version installed on the remote host has been reported prone to several vulnerabilities including a directory traversal issue and an authentication bypass issue. An attacker may gain read access on files outside the web root or access the administrative module without authentication.
SolutionUpgrade to version 1.0.4 or higher.