CVE-2010-4350

Directory traversal vulnerability in admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the db_type parameter, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.
References
Link Resource
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html
http://openwall.com/lists/oss-security/2010/12/15/5 Exploit Patch
http://openwall.com/lists/oss-security/2010/12/16/2 Exploit Patch
http://secunia.com/advisories/42772
http://secunia.com/advisories/51199
http://security.gentoo.org/glsa/glsa-201211-01.xml
http://www.mantisbt.org/blog/?p=123
http://www.mantisbt.org/bugs/changelog_page.php?version_id=112 Exploit Patch
http://www.mantisbt.org/bugs/view.php?id=12607
http://www.vupen.com/english/advisories/2011/0002
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4984.php Exploit Patch
https://bugzilla.redhat.com/show_bug.cgi?id=663230 Exploit Patch
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html
http://openwall.com/lists/oss-security/2010/12/15/5 Exploit Patch
http://openwall.com/lists/oss-security/2010/12/16/2 Exploit Patch
http://secunia.com/advisories/42772
http://secunia.com/advisories/51199
http://security.gentoo.org/glsa/glsa-201211-01.xml
http://www.mantisbt.org/blog/?p=123
http://www.mantisbt.org/bugs/changelog_page.php?version_id=112 Exploit Patch
http://www.mantisbt.org/bugs/view.php?id=12607
http://www.vupen.com/english/advisories/2011/0002
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4984.php Exploit Patch
https://bugzilla.redhat.com/show_bug.cgi?id=663230 Exploit Patch
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mantisbt:mantisbt:*:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.18.0:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.0:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.0a1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.0a2:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.2:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.3:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.4:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:0.19.5:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc2:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc3:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc4:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc5:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0a1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0a2:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.0a3:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.2:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.3:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.4:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.5:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.6:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.7:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.0.8:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.0:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.2:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.4:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.5:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.6:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.7:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.1.8:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:mantisbt:mantisbt:1.2.2:*:*:*:*:*:*:*

History

21 Nov 2024, 01:20

Type Values Removed Values Added
References () http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html - () http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html -
References () http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html - () http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html -
References () http://openwall.com/lists/oss-security/2010/12/15/5 - Exploit, Patch () http://openwall.com/lists/oss-security/2010/12/15/5 - Exploit, Patch
References () http://openwall.com/lists/oss-security/2010/12/16/2 - Exploit, Patch () http://openwall.com/lists/oss-security/2010/12/16/2 - Exploit, Patch
References () http://secunia.com/advisories/42772 - () http://secunia.com/advisories/42772 -
References () http://secunia.com/advisories/51199 - () http://secunia.com/advisories/51199 -
References () http://security.gentoo.org/glsa/glsa-201211-01.xml - () http://security.gentoo.org/glsa/glsa-201211-01.xml -
References () http://www.mantisbt.org/blog/?p=123 - () http://www.mantisbt.org/blog/?p=123 -
References () http://www.mantisbt.org/bugs/changelog_page.php?version_id=112 - Exploit, Patch () http://www.mantisbt.org/bugs/changelog_page.php?version_id=112 - Exploit, Patch
References () http://www.mantisbt.org/bugs/view.php?id=12607 - () http://www.mantisbt.org/bugs/view.php?id=12607 -
References () http://www.vupen.com/english/advisories/2011/0002 - () http://www.vupen.com/english/advisories/2011/0002 -
References () http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4984.php - Exploit, Patch () http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4984.php - Exploit, Patch
References () https://bugzilla.redhat.com/show_bug.cgi?id=663230 - Exploit, Patch () https://bugzilla.redhat.com/show_bug.cgi?id=663230 - Exploit, Patch

Information

Published : 2011-01-03 20:00

Updated : 2024-11-21 01:20


NVD link : CVE-2010-4350

Mitre link : CVE-2010-4350

CVE.ORG link : CVE-2010-4350


JSON object : View

Products Affected

mantisbt

  • mantisbt
CWE
CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')