CVE-2008-0790

Intermate WinIPDS 3.3 G52-33-021 - Path Traversal via URI

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-0790. PoCs published by Luigi Auriemma.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in WinIPDS, allowing attackers to access sensitive files like boot.ini via crafted HTTP requests. It also mentions a DoS vulnerability but does not provide specific details.

Description

Directory traversal vulnerability in ipdsserver.exe in Intermate WinIPDS 3.3 G52-33-021 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Luigi Auriemma · textremotewindows
https://www.exploit-db.com/exploits/31163

This exploit demonstrates a directory traversal vulnerability in WinIPDS, allowing attackers to access sensitive files like boot.ini via crafted HTTP requests. It also mentions a DoS vulnerability but does not provide specific details.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: WinIPDS 3.3 rev. G52-33-021
No auth needed
Prerequisites: Network access to the vulnerable WinIPDS service
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/27757
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3658
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/488015/100/0/threaded
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/28934
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/489499/100/0/threaded

Scores

EPSS 0.0332
EPSS Percentile 87.1%

Details

CWE
CWE-22
Status published
Products (1)
intermate/winipds 3.3revg52-33-021
Published Feb 15, 2008
Tracked Since Feb 18, 2026