CVE-2008-1606
Elastic Path 4.1 - '/manager/FileManager.jsp?dir' Traversal Arbitrary Directory Listing
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Multiple directory traversal vulnerabilities in Elastic Path (EP) 4.1 and 4.1.1 allow remote attackers to (1) download arbitrary files via a .. (dot dot) in the file parameter to manager/getImportFileRedirect.jsp, (2) upload arbitrary files via a "..\" (dot dot backslash) in the file parameter to importData.jsp, and (3) list directory contents via a .. (dot dot) in the dir parameter to manager/fileManager.jsp.
Múltiples vulnerabilidades de Salto de Directorio en Elastic Path (EP) 4.1 y 4.1.1, permiten a atacantes remotos (1) descargar archivos de su elección mediante un .. (punto punto) en el parámetro file de manager/getImportFileRedirect.jsp, (2) subir archivos de su elección mediante un “..\” (punto punto barra invertida) en el parámetro file de importData.jsp y (3) listar contenidos de directorio mediante un .. (punto punto) en el parámetro dir de manager/fileManager.jsp.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2008-03-20 First Exploit
- 2008-04-01 CVE Reserved
- 2008-04-01 CVE Published
- 2024-08-07 CVE Updated
- 2024-11-19 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://developer.elasticpath.com/entry%21default.jspa?categoryID=4&externalID=1334 | X_refsource_confirm | |
| http://weblog.nomejortu.com/?p=37 | X_refsource_misc | |
| http://www.securityfocus.com/bid/28352 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/41356 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/41364 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/31446 | 2008-03-20 | |
| https://www.exploit-db.com/exploits/31445 | 2008-03-20 | |
| http://www.mwrinfosecurity.com/publications/mwri_elastic-path-arbitrary-file-system-access_2008-02-22.pdf | 2024-08-07 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/29496 | 2023-11-07 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Elastic Path Search vendor "Elastic Path" | Elastic Path Search vendor "Elastic Path" for product "Elastic Path" | 4.1 Search vendor "Elastic Path" for product "Elastic Path" and version "4.1" | - |
Affected
| ||||||
| Elastic Path Search vendor "Elastic Path" | Elastic Path Search vendor "Elastic Path" for product "Elastic Path" | 4.1.1 Search vendor "Elastic Path" for product "Elastic Path" and version "4.1.1" | - |
Affected
| ||||||