|
Family: Remote file access --> Category: attack
Music Daemon File Disclosure Vulnerability Scan
Vulnerability Scan Summary Music Daemon File Disclosure
Detailed Explanation for this Vulnerability Test
The remote host is running MusicDaemon, a music player running as a server.
It is possible to cause the Music Daemon to disclose the
content of arbitrary files by inserting them to the list
of tracks to listen to.
A possible hacker can list the content of arbitrary files including the
/etc/shadow file, as by default the daemon runs under root rights.
Solution : None at this time
Risk Factor: High
Click HERE for more information and discussions on this network vulnerability scan.
|