CVE-2011-2524

{"id": "CVE-2011-2524", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2011-08-31T23:55:02.957", "references": [{"url": "http://git.gnome.org/browse/libsoup/tree/NEWS", "source": "secalert@redhat.com"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063431.html", "source": "secalert@redhat.com"}, {"url": "http://secunia.com/advisories/47299", "source": "secalert@redhat.com"}, {"url": "http://www.debian.org/security/2011/dsa-2369", "source": "secalert@redhat.com"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-1102.html", "tags": ["Vendor Advisory"], "source": "secalert@redhat.com"}, {"url": "http://www.securitytracker.com/id?1025864", "source": "secalert@redhat.com"}, {"url": "http://www.ubuntu.com/usn/USN-1181-1", "source": "secalert@redhat.com"}, {"url": "https://bugzilla.gnome.org/show_bug.cgi?id=653258", "tags": ["Patch"], "source": "secalert@redhat.com"}, {"url": "http://git.gnome.org/browse/libsoup/tree/NEWS", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063431.html", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/47299", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.debian.org/security/2011/dsa-2369", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.redhat.com/support/errata/RHSA-2011-1102.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securitytracker.com/id?1025864", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ubuntu.com/usn/USN-1181-1", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://bugzilla.gnome.org/show_bug.cgi?id=653258", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-22"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI."}, {"lang": "es", "value": "Una vulnerabilidad de salto de directorio en la soup-uri.c en SoupServer en libsoup antes de v2.35.4 permite a atacantes remotos leer archivos de su elecci\u00f3n a trav\u00e9s de un %2e%2e (punto punto) en la URI."}], "lastModified": "2024-11-21T01:28:27.667", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:gnome:libsoup:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C5DD5AB-8CB2-4B2E-AE93-3754085845ED", "versionEndIncluding": "2.35.3"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99EFB489-06D8-402D-8470-38551BCB2FC6"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1C82429-BB29-49E7-ADFA-EED16ED7AFC8"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B9D7017-F606-4466-8F9A-817C6862AD95"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3619C616-7DAB-4035-9D23-2F2336954DBB"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E672080A-06D2-4C2C-B3D1-BE679D5649BF"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6B1B4616-3889-41B6-870F-37DC78A153FA"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E1E613A-B333-4E96-90BA-A2AD4363DEB8"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8EEDB4A8-5593-47C3-92F3-F91476C0D4F1"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FD001D38-16AB-4AFB-9DC6-F7A340436E2B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D5398E1-3FB1-4BEA-9278-F9C041A34BD2"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C03F3575-9B90-419C-A5A5-5535F537F096"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "467EDDA7-DA81-4DC5-815F-9D1B394CB02F"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "63FE3D88-0596-479B-8E38-E47C7FA04397"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.93:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF7DEA94-7E9C-457B-B095-66CC23E9681F"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.94:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F806A86-1250-49EE-992A-09574191D087"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.95.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E72DA717-D352-4DCB-BBF9-231284B945F8"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.96:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "19FD71C4-0D7E-4E32-ABFB-35D2943AFC5C"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.97:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3AE675A3-B03B-4417-8671-F289604C2291"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.98:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5AE3AD41-FAEA-41CE-8317-89E76BE9FE68"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.99:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0DD23A95-C65E-4C2E-BAAC-0D8364A1DBF8"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.100:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "969CB6C0-AD9B-4F48-B77A-0BE3F56B0B22"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.101:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "95B2D824-7560-4779-A844-07D86C2CCAAB"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.102:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EBCC06A9-A79D-4CB2-ADCD-AC1987E2790B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.103:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "25DE1614-7F35-4484-BE88-F9C4D9935EC1"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.2.104:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1756B5C1-18E1-4C6D-89AD-17432B29EBB9"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.3.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "22EA54CB-F7C9-4B17-9118-BA335B9E8D46"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0C43A424-B38A-4819-AFC3-3532C447DF9F"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.3.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3C994C81-6B80-47E8-AD70-B2DC7BF12209"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FC08FAE6-B41F-41B8-B819-F582DBEA918A"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.4.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6D6E08FA-E647-42B7-A033-806DAC1F4951"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.23.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2752C2FA-7627-4488-88A5-5E6F76FC8F3D"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.23.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1F4AE3DE-5379-47A0-9BDC-AB49323F85C1"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.23.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "896575A0-8B7B-43BE-A653-0BEF54E3049B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.23.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A02CCE6B-C774-4D9C-AD88-69D24651E1F0"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.24.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9299BB6F-DF57-427C-A0D0-7F872810420B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.24.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEB94071-AB85-412E-A31B-29FD8189484D"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.25.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0BC56735-58B1-4780-ABA9-32501C24B56F"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.25.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "72B7C474-9C79-4C1F-B0A3-A5780F87379A"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.25.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF3B6CBD-5F44-4FC6-83B7-41134055D1AB"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.25.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "832089BA-670E-40E1-A812-164F13FE29C1"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.25.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C76B162-8BCC-43A9-A00B-BEDC16F02C2E"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.26.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42B5A587-2F23-42CB-BE0F-1F5A4E96AD06"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.26.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C713940D-24D7-429F-B961-E3E1651F30C9"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C537C96-A138-4D5D-A657-E04D3E2B04AB"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6C5EFE4E-ED20-4CB2-B0DE-D7A726F26221"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "99340F6B-F033-497F-AD66-655504495CBD"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7DFE407F-7F02-4E08-9242-41E51A436F1D"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A838EB16-BC34-4747-84E6-FD31718BC708"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EB6F6369-34FD-47D2-A829-BB36CBAAA99A"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.27.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "054A96BA-6584-4D6B-AEB5-FE12209E5C69"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.28.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0FAB459F-29F5-4AD9-95F4-95F5D05FE91B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.28.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9FFD7530-6548-4A91-9A0A-F80429368E4B"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.29.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B48661A-D82E-49D7-917C-3D6A3A7CE116"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.29.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA0FA486-3657-48DC-9E10-11EE8A1458B7"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.29.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "15F7CFA6-628D-4CF5-93EB-55519CF955EB"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.29.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5D1878C5-80C7-4DC2-987C-1BC52E63A8C4"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.29.91:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D7E6439-AC14-4D45-BC73-C0BF7E79BE9D"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.30.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C2E158D5-987A-4F93-82A0-CF74527CA210"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.30.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CE0D94D2-D74A-448F-9DF5-4B4C23138E0A"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.31.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0D363498-6F1D-4EEF-853D-905F1D95E62D"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.31.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "981AF805-9646-4913-B274-1969AFACC734"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.31.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1197161-E084-4485-BA72-B60C07469680"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.31.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F9E91156-537E-4885-87C2-EC4BA8C2B306"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.32.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9130A56A-2995-455A-8A51-1A0A85F3D38E"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.32.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F3A81CD2-1192-4F9E-8BF4-BF86445E11AA"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.32.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "92398648-8754-4130-BA90-A54838AFA159"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.33.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C536F346-4B27-4A53-A942-68531D9991A0"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.33.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8F602177-543B-4A42-92C1-53F1573518FD"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.33.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8011A42F-B7EF-44F2-BE9A-E2543EB1C808"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.33.90:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC3501F1-B153-4870-A7A4-741ACA848656"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.33.92:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "398B638B-9879-403D-9F55-59FCC8CE3F31"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.34.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A16CBF8D-7411-4E16-81B0-47696F036C35"}, {"criteria": "cpe:2.3:a:gnome:libsoup:2.34.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4AC22BA2-D63A-48F8-BF0F-90D664EA6856"}], "operator": "OR"}]}], "sourceIdentifier": "secalert@redhat.com"}