CVE-2019-16758
CVE-2019-16758
In Lexmark Services Monitor 2.27.4.0.39 (running on TCP port 2070), a remote attacker can use a directory traversal technique using /../../../ or ..%2F..%2F..%2F to obtain local files on the host operating system.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/155365/Lexmark-Services-Monitor-2.27.4.0.39-Directory-Traversal.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47663unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://packetstormsecurity.com/files/155365/Lexmark-Services-Monitor-2.27.4.0.39-Directory-Traversal.htmlhttp://seclists.org/fulldisclosure/2019/Nov/17http://support.lexmark.com/index?page=content&id=TE930&locale=en&userlocale=EN_UShttps://www.symantec.com/security-center/vulnerabilities/writeup/110943