CVE-2018-16133

Vulnerability

CyBroHttpServer version 1.0.3 is vulnerable to directory traversal due to insufficient sanitization of user-supplied URIs. The server accepts HTTP GET requests and does not filter ../ sequences, allowing an attacker to navigate outside the web root directory. This affects the default installation on Windows systems [1][2].

Exploitation

An unauthenticated attacker can exploit this vulnerability by sending a crafted HTTP GET request containing ../ path traversal sequences. For example, requesting GET /../../../../Windows/win.ini HTTP/1.1 retrieves the contents of the win.ini file. No special privileges or user interaction is required; the attacker only needs network access to the server on the default port 8080 [1][2].

Impact

Successful exploitation allows an attacker to read arbitrary files from the server's filesystem, leading to information disclosure. Sensitive files such as configuration files, system files, or application data may be exposed. The vulnerability does not provide code execution or write access, but the leaked information could be used for further attacks [1][2].

Mitigation

As of the publication date (2018-08-29), no official patch or update has been released by Cybrotech. The vendor's website appears to be inactive, and the software may be considered end-of-life. Users are advised to disable or replace CyBroHttpServer with a maintained alternative. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog [1][2].