A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the disclose root directory listings. This issue has also been reported to allow for listing of directories that reside outside the server root as well.
An attacker may leverage this issue to gain access to sensitive information by disclosing directory listings; information disclosed in this way could lead to further attacks against the target system.
For listing directories inside the server root (provided by Donato Ferrante):
For listing directories outside of the server root (provided by Dr_insane):
A vulnerability has been reported in the ImgSvr server software that may allow a remote user to the retrieve arbitrary files from the web server root directory and any subdirectories therein.
An attacker may leverage this issue to gain access to arbitrary scripts contained within the server root directory.
The following has been reported to crash the affected server:
ImgSvr contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a site visitor includes a NULL byte ("%00") in an HTTP request to the service, which will disclose a directory listing of the web root, any subdirectory listing, and allow file content disclosure resulting in a loss of confidentiality.
Upgrade to version 0.5 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.