CVE-2013-3541 Information

Description

Directory traversal vulnerability in cgi-bin/admin/fileread in AirLive WL2600CAM and possibly other camera models allows remote attackers to read arbitrary files via a .. (dot dot) in the READ.filePath parameter.

Reference

http://seclists.org/fulldisclosure/2013/Jun/84