SB2012021301 - Path traversal in Mathopd
Published: February 13, 2012 Updated: August 11, 2020
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 vulnerability.
1) Path traversal (CVE-ID: CVE-2012-1050)
CWE-ID: CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green
The vulnerability allows a remote attacker to perform directory traversal attacks.
The vulnerability exists due to input validation error when processing directory traversal sequences in Mathopd 1.4.x and 1.5.x before 1.5p7, when configured with the * construct for mass virtual hosting,. A remote authenticated attacker can send a specially crafted HTTP request and remote attackers to read arbitrary files via a crafted Host header.
Remediation
Cybersecurity Help is not aware of any official remediation provided by the vendor.
References
- http://archives.neohapsis.com/archives/bugtraq/2012-02/0025.html
- http://osvdb.org/78896
- http://secunia.com/advisories/47908
- http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.html
- http://www.mathopd.org/security.html
- http://www.securitytracker.com/id?1026641
- https://exchange.xforce.ibmcloud.com/vulnerabilities/73049