CVE-2007-2348
lftp mirror --script does not escape names and targets of symbolic links
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
mirror --script in lftp before 3.5.9 does not properly quote shell metacharacters, which might allow remote user-assisted attackers to execute shell commands via a malicious script. NOTE: it is not clear whether this issue crosses security boundaries, since the script already supports commands such as "get" which could overwrite executable files.
La secuencia de comandos mirror en lftp anterior a 3.5.9 no cita adecaudamente el interprete de carácteres metacaracter, lo cual podría permitir atacantes con la intervención del usuario ejecutar comandos del interprete de comandos (shell) a través de secuencias de comandos maliciosas. NOTA: no está claro si este asunto cruza los límites de la seguridad, puesto que que la secuencia de comandos apoya comandos como por ejemplo “get” que podrían sobreescribir ficheros ejecutables.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2007-04-27 CVE Reserved
- 2007-04-27 CVE Published
- 2024-07-31 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (12)
| URL | Tag | Source |
|---|---|---|
| http://bugs.gentoo.org/show_bug.cgi?id=173524 | X_refsource_confirm | |
| http://lftp.yar.ru/news.html | X_refsource_confirm | |
| http://secunia.com/advisories/25107 | Third Party Advisory | |
| http://secunia.com/advisories/25132 | Third Party Advisory | |
| http://secunia.com/advisories/36559 | Third Party Advisory | |
| http://www.securityfocus.com/bid/23736 | Vdb Entry | |
| http://www.vupen.com/english/advisories/2007/1590 | Vdb Entry | |
| https://issues.rpath.com/browse/RPL-1229 | X_refsource_confirm | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10806 | Signature |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://rhn.redhat.com/errata/RHSA-2009-1278.html | 2023-11-07 | |
| https://access.redhat.com/security/cve/CVE-2007-2348 | 2009-09-02 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=236238 | 2009-09-02 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Alexander V. Lukyanov Search vendor "Alexander V. Lukyanov" | Lftp Search vendor "Alexander V. Lukyanov" for product "Lftp" | <= 3.5.8 Search vendor "Alexander V. Lukyanov" for product "Lftp" and version " <= 3.5.8" | - |
Affected
| ||||||