CVE-2014-6035
ManageEngine OpManager AgentDataHandler FILENAME File Upload Remote Code Execution Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
3Exploited in Wild
-Decision
Descriptions
Directory traversal vulnerability in the FileCollector servlet in ZOHO ManageEngine OpManager 11.4, 11.3, and earlier allows remote attackers to write and execute arbitrary files via a .. (dot dot) in the FILENAME parameter.
Vulnerabilidad de salto de directorio en el servlet FileCollector en ZOHO ManageEngine OpManager 11.4, 11.3, y anteriores permite a atacantes remotos escribir y ejecutar ficheros arbitrarios a través de un .. (punto punto) en el parámetro FILENAME.
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of ManageEngine OpManager. Authentication is not required to exploit this vulnerability.
The specific flaw exists within the AgentDataHandler class. The issue lies in the failure to sanitize the filenames uploaded to the servlet. An attacker can leverage this vulnerability to execute code under the context of SYSTEM.
ManageEngine OpManager, Social IT Plus, and IT360 suffer from remote code execution via upload and arbitrary file deletion vulnerabilities.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2014-09-01 CVE Reserved
- 2014-09-29 CVE Published
- 2014-11-09 First Exploit
- 2024-08-06 CVE Updated
- 2024-10-16 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (4)
URL | Tag | Source |
---|
URL | Date | SRC |
---|---|---|
https://www.exploit-db.com/exploits/43896 | 2014-11-09 | |
http://seclists.org/fulldisclosure/2014/Sep/110 | 2024-08-06 | |
https://raw.githubusercontent.com/pedrib/PoC/master/ManageEngine/me_opmanager_socialit_it360.txt | 2024-08-06 |
URL | Date | SRC |
---|---|---|
https://support.zoho.com/portal/manageengine/helpcenter/articles/servlet-vulnerability-fix | 2014-12-05 |
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Zohocorp Search vendor "Zohocorp" | Manageengine Opmanager Search vendor "Zohocorp" for product "Manageengine Opmanager" | <= 11.3 Search vendor "Zohocorp" for product "Manageengine Opmanager" and version " <= 11.3" | - |
Affected
| ||||||
Zohocorp Search vendor "Zohocorp" | Manageengine Opmanager Search vendor "Zohocorp" for product "Manageengine Opmanager" | 11.4 Search vendor "Zohocorp" for product "Manageengine Opmanager" and version "11.4" | - |
Affected
|