Eibiz i-Media Server Digital Signage Directory Traversal Vulnerability

A directory traversal vulnerability has been identified in Eibiz i-Media Server Digital Signage version 3.8.0. This vulnerability allows unauthenticated remote attackers to access files outside the server's root directory. Exploitation of the 'oldfile' GET parameter can lead to the exposure of sensitive configuration files, such as 'web.xml', and system files like 'win.ini'.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive files outside the web root, including configuration and system files.

Reproduction

The vulnerability can be reproduced by sending a GET request to the 'oldfile' parameter with a path traversal payload. This payload should navigate up the directory structure to access files outside the server's root directory. For example, using 'oldfile' to request '../../WEB-INF/web.xml' or '../../../../../../windows/win.ini' will demonstrate the vulnerability.