The corresponding embeded webserver "PST10 WebServer" typically listens
to port 80 and is prone to a directory traversal attack, therefore an
unauthenticated attacker may be able to exploit this issue to access
sensitive information to aide in subsequent attacks.

http://seclists.org/fulldisclosure/2017/Mar/63http://seclists.org/fulldisclosure/2017/Mar/63