CVE-2011-0063

The _list_file_get function in lib/Majordomo.pm in Majordomo 2 20110203 and earlier allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ./.../ sequence in the "extra" parameter to the help command, which causes the regular expression to produce .. (dot dot) sequences. NOTE: this vulnerability is due to an incomplete fix for CVE-2011-0049.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/43631	Vendor Advisory
http://securityreason.com/securityalert/8133
http://sotiriu.de/adv/NSOADV-2011-003.txt	Exploit
http://www.securityfocus.com/archive/1/516923/100/0/threaded
https://bugzilla.mozilla.org/show_bug.cgi?id=631307	Exploit Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/66011
http://secunia.com/advisories/43631	Vendor Advisory
http://securityreason.com/securityalert/8133
http://sotiriu.de/adv/NSOADV-2011-003.txt	Exploit
http://www.securityfocus.com/archive/1/516923/100/0/threaded
https://bugzilla.mozilla.org/show_bug.cgi?id=631307	Exploit Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/66011

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:mj2:majordomo_2::::::::
	cpe:2.3:a:mj2:majordomo_2:20110101:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110102:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110103:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110104:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110105:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110106:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110107:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110108:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110109:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110110:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110111:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110112:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110113:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110114:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110115:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110116:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110117:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110118:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110119:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110120:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110121:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110122:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110123:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110124:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110125:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110126:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110127:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110128:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110129:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110130:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110131:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110201:::::::*
	cpe:2.3:a:mj2:majordomo_2:20110202:::::::*

History

21 Nov 2024, 01:23

Type	Values Removed	Values Added
References	~~() http://secunia.com/advisories/43631 - Vendor Advisory~~	() http://secunia.com/advisories/43631 - Vendor Advisory
References	~~() http://securityreason.com/securityalert/8133 -~~	() http://securityreason.com/securityalert/8133 -
References	~~() http://sotiriu.de/adv/NSOADV-2011-003.txt - Exploit~~	() http://sotiriu.de/adv/NSOADV-2011-003.txt - Exploit
References	~~() http://www.securityfocus.com/archive/1/516923/100/0/threaded -~~	() http://www.securityfocus.com/archive/1/516923/100/0/threaded -
References	~~() https://bugzilla.mozilla.org/show_bug.cgi?id=631307 - Exploit, Patch~~	() https://bugzilla.mozilla.org/show_bug.cgi?id=631307 - Exploit, Patch
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/66011 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/66011 -

Information

Published : 2011-03-15 17:55

Updated : 2024-11-21 01:23

NVD link : CVE-2011-0063

Mitre link : CVE-2011-0063

CVE.ORG link : CVE-2011-0063

JSON object : View

Products Affected

mj2

majordomo_2

CWE

CWE-22

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

5.0 /10