CVE-2005-0479

trackercam < 5.12 - Directory Traversal via ComGetLogFile.php3 fn Parameter

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-0479. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary The exploit demonstrates multiple vulnerabilities in TrackerCam, including buffer overflow, directory traversal, and information disclosure. It provides example URLs to trigger these issues.

Description

Directory traversal vulnerability in ComGetLogFile.php3 for TrackerCam 5.12 and earlier allows remote attackers to read arbitrary files via ".." sequences and (1) "/" slash), (2) "\" (backslash), or (3) hex-encoded characters in the fn parameter.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Luigi Auriemma · textwebappsphp

https://www.exploit-db.com/exploits/25123

View Code ZIP pw:eip

The exploit demonstrates multiple vulnerabilities in TrackerCam, including buffer overflow, directory traversal, and information disclosure. It provides example URLs to trigger these issues.

Classification

Working Poc 90%

Attack Type

Dos | Info Leak

Complexity

Trivial

Reliability

Reliable

Target: TrackerCam

No auth needed

Prerequisites: Network access to the target system

MITRE ATT&CK

T1005 - Data from Local System T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit, Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/390918

Exploit, Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/12592

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/19414

Scores

EPSS 0.0313

EPSS Percentile 86.2%

Details

Status published

Products (1)

trackercam/trackercam < 5.12

Published Mar 30, 2005

Tracked Since Feb 18, 2026