Lucene search

[email protected]CVE-2012-2670

HistoryJun 17, 2012 - 3:41 a.m.

CVE-2012-2670

2012-06-1703:41:00

CWE-20

[email protected]

web.nvd.nist.gov

collabtive

cve-2012-2670

file upload

security vulnerability

nvd

7.3 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.7%

JSON

manageuser.php in Collabtive before 0.7.6 allows remote authenticated users, and possibly unauthenticated attackers, to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar file with an accepted Content-Type such as image/jpeg, then accessing it via a direct request to the file in files/standard/avatar.

CPENameOperatorVersion
o-dyn:collabtiveo-dyn collabtiveeq0.6.5
o-dyn:collabtiveo-dyn collabtiveeq0.7
o-dyn:collabtiveo-dyn collabtivele0.7.5
o-dyn:collabtiveo-dyn collabtiveeq0.6.4

CPE	Name	Operator	Version
o-dyn:collabtive	o-dyn collabtive	eq	0.6.5
o-dyn:collabtive	o-dyn collabtive	eq	0.7
o-dyn:collabtive	o-dyn collabtive	le	0.7.5
o-dyn:collabtive	o-dyn collabtive	eq	0.6.4

References

archives.neohapsis.com/archives/bugtraq/2012-06/0007.html

www.collabtive.o-dyn.de/blog/?p=426

www.openwall.com/lists/oss-security/2012/06/06/6

www.openwall.com/lists/oss-security/2012/06/06/9

www.securityfocus.com/archive/1/522973/30/0/threaded

www.securityfocus.com/bid/53813

xync.org/2012/06/04/Arbitrary-File-Upload-in-Collabtive.html

exchange.xforce.ibmcloud.com/vulnerabilities/76101

7.3 High

AI Score

Confidence

Low

6.5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:P/I:P/A:P

0.006 Low

EPSS

Percentile

77.7%

JSON

Related for CVE-2012-2670

cvelist1 ubuntucve1 prion1