Main Vulnerability Database Vulnerabilities #VU25457

Path traversal in libslirp - CVE-2020-7211

Published: February 19, 2020 / Updated: April 28, 2020

Vulnerability identifier: #VU25457

CSH Severity: Low

CVSS v4.0: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2020-7211

CWE-ID: CWE-22

Exploitation vector: Adjecent network

Exploit availability: No public exploit available

Vendor: Freedesktop.org

Affected software:
libslirp

Detailed vulnerability description

The vulnerability allows an attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences within tftp.c in libslirp. A remote attacker can send a specially crafted TFPT request and read arbitrary files on the Windows system.

How to mitigate CVE-2020-7211

Install update from vendor's website.

Sources

http://www.openwall.com/lists/oss-security/2020/01/17/2
https://gitlab.freedesktop.org/slirp/libslirp/commit/14ec36e107a8c9af7d0a80c3571fe39b291ff1d4
https://security-tracker.debian.org/tracker/CVE-2020-7211

Path traversal in libslirp - CVE-2020-7211

Detailed vulnerability description

How to mitigate CVE-2020-7211

Sources

Please verify you're human