CVE-2008-0396

BitDefender Update Server - Unauthenticated Path Traversal via HTTP Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0396. PoCs published by Oliver Karow.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in BitDefender Update Server by sending a crafted HTTP GET request to access sensitive files like boot.ini. The PoC uses netcat to send the request and retrieve the file contents.

Description

Directory traversal vulnerability in BitDefender Update Server (http.exe), as used in BitDefender products including Security for Fileservers and Enterprise Manager (BDEM), allows remote attackers to read arbitrary files via .. (dot dot) sequences in an HTTP request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Oliver Karow · textremotewindows

https://www.exploit-db.com/exploits/31039

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in BitDefender Update Server by sending a crafted HTTP GET request to access sensitive files like boot.ini. The PoC uses netcat to send the request and retrieve the file contents.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: BitDefender Update Server (affecting BitDefender Security for File Servers, BitDefender Enterprise Manager, and other products)

No auth needed

Prerequisites: Network access to the vulnerable BitDefender Update Server · Netcat or similar tool to send HTTP requests

MITRE ATT&CK