iPhone/iPad Phone Drive 1.1.1 Directory Traversal

August 9, 2011 in News | Comments (0)

our team discovered a new vulnerability on IOS app Phone Drive 1.1.1

type of vulnerability is web server directory traversal .

we use ..%2f to change local directory and read some valuable files like address book and passwd .

exploit-db : http://www.exploit-db.com/exploits/17645/

Leave a Reply

Required !