Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Keene Digital Media Server < 1.0.4 Directory Traversal and Authentication Bypass

Medium

Synopsis

The remote host is vulnerable to multiple attack vectors.

Description

The remote host is running Keene Digital Media Server, a web application for Microsoft Windows designed to share media files on the Internet. The version installed on the remote host has been reported prone to several vulnerabilities including a directory traversal issue and an authentication bypass issue. An attacker may gain read access on files outside the web root or access the administrative module without authentication.

Solution

Upgrade to version 1.0.4 or higher.