CVE-2015-2166

NUCLEI

Ericsson Drutt Mobile Service Delivery Platform 4,5,6 Path Traversal via Dot Dot Encoded Slash

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2015-2166. PoCs published by Anastasios Monachos, K3ysTr0K3R. A Nuclei detection template is also available.

AI-analyzed exploit summary The exploit details a directory traversal vulnerability in Ericsson Drutt MSDP (Instance Monitor) allowing unauthenticated remote attackers to access arbitrary files via crafted HTTP GET requests. The vulnerability is confirmed and patched, with specific file paths provided for exploitation.

Description

Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI.

Exploits (2)

exploitdb WRITEUP
by Anastasios Monachos · textwebappslinux
https://www.exploit-db.com/exploits/36619

The exploit details a directory traversal vulnerability in Ericsson Drutt MSDP (Instance Monitor) allowing unauthenticated remote attackers to access arbitrary files via crafted HTTP GET requests. The vulnerability is confirmed and patched, with specific file paths provided for exploitation.

Classification
Writeup 100%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Ericsson Drutt MSDP (Instance Monitor) versions 4, 5, and 6
No auth needed
Prerequisites: Network access to the target system
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by K3ysTr0K3R · poc
https://github.com/K3ysTr0K3R/CVE-2015-2166-EXPLOIT

This repository contains a functional Python script that exploits CVE-2015-2166, a directory traversal vulnerability in Ericsson Drutt MSDP. The script sends crafted HTTP requests with encoded traversal sequences to read arbitrary files like /etc/passwd.

Classification
Working Poc 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Ericsson Drutt Mobile Service Delivery Platform (MSDP) versions 4, 5, and 6
No auth needed
Prerequisites: Network access to the target system · Instance Monitor endpoint exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

Nuclei Templates (1)

Ericsson Drutt MSDP - Local File Inclusion
MEDIUMby daffainfo

References (3)

Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/73901
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/36619/

Scores

EPSS 0.7360
EPSS Percentile 98.8%

Details

CWE
CWE-22
Status published
Products (3)
ericsson/drutt_mobile_service_delivery_platform 4.0
ericsson/drutt_mobile_service_delivery_platform 5.0
ericsson/drutt_mobile_service_delivery_platform 6.0
Published Apr 06, 2015
Tracked Since Feb 18, 2026