International Datacasting Corporation SuperFlex Satellite Receiver Path Traversal Vulnerability

A path traversal vulnerability has been identified in the International Datacasting Corporation (IDC) SFX Series SuperFlex Satellite Receiver Web management portal, version 101. The vulnerability resides in the '/IDC_Logging/checkifdone.cgi' script, where an authenticated attacker can manipulate the 'file' parameter to traverse directories and enumerate arbitrary files on the underlying filesystem. This issue arises from insecure handling of file paths in Perl, allowing authenticated users to perform directory traversal. The vulnerability can be exploited by using a backup endpoint that confirms the existence of a file by indicating a successful backup operation, or by referencing a non-existent file, which results in a failed status.

Impact

Exploitation of this vulnerability allows for unauthorized access to the filesystem, where an attacker can enumerate files and potentially access sensitive information.