CVE-2010-3490
FreePBX 2.8.0 - Recordings Interface Allows Remote Code Execution
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Directory traversal vulnerability in page.recordings.php in the System Recordings component in the configuration interface in FreePBX 2.8.0 and earlier allows remote authenticated administrators to create arbitrary files via a .. (dot dot) in the usersnum parameter to admin/config.php, as demonstrated by creating a .php file under the web root.
Multiples vulnerabilidades de salto de directorio en page.recordings.php en el componente System Recordings en la interface de cofiguración en interfaz en FreePBX v2.8.0 y anteriores permite a administradores autenticados remotamente crear ficheros a su elección a través de .. (punto punto) en el parámetro usersnum en dmin/config.php, como quedó demostrado en la creacción de un fichero .php bajo la raíz web.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-09-23 CVE Reserved
- 2010-09-24 First Exploit
- 2010-09-28 CVE Published
- 2024-08-07 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (7)
| URL | Tag | Source |
|---|---|---|
| http://www.freepbx.org/trac/ticket/4553 | X_refsource_misc | |
| http://www.securityfocus.com/archive/1/513947/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/43454 | Vdb Entry | |
| https://www.trustwave.com/spiderlabs/advisories/TWSL2010-005.txt | X_refsource_misc |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/15098 | 2010-09-24 | |
| https://github.com/moayadalmalat/CVE-2010-3490 | 2019-12-09 | |
| http://www.exploit-db.com/exploits/15098 | 2024-08-07 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|