VideoFlow Digital Video Protection DVP Directory Traversal Vulnerability

A directory traversal vulnerability has been identified in VideoFlow Digital Video Protection (DVP) version 2.10. This vulnerability allows authenticated attackers to access arbitrary system files by exploiting unvalidated 'ID' parameters in several Perl scripts, including downloadsys.pl. The issue arises from improper validation of input, which can be manipulated to traverse directories and read sensitive files.

Impact

Exploitation of this vulnerability leads to unauthorized access to sensitive system files, potentially exposing confidential information or system data.

Reproduction

To reproduce this vulnerability, an authenticated user can send a request to the 'downloadsys.pl' script with a crafted 'ID' parameter that includes directory traversal sequences. This request should be made while logged in, as the vulnerability requires authentication. The response will include the contents of the file specified in the 'ID' parameter, bypassing normal file access restrictions.