Directory Traversal Vulnerability in Ericsson Drutt Mobile Service Delivery Platform (MSDP) Allows Remote File Read

Directory Traversal Vulnerability in Ericsson Drutt Mobile Service Delivery Platform (MSDP) Allows Remote File Read

CVE-2015-2166 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI.

Learn more about our Mobile App Penetration Testing.