CVE-2014-5007

🗓️ 17 Jan 2020 21:59:55Reported by mitreType

cve🔗 web.nvd.nist.gov👁 153 Views🌐 WEB

CVE-2014-5007 Directory Traversal Vulnerability in ZOHO ManageEngine Desktop Centra

Reporter	Title	Published	Views	Family All 11
0day.today	ManageEngine Desktop Central - Arbitrary File Upload / RCE Vulnerabilities	1 Sep 201400:00	–	zdt
Circl	CVE-2014-5007	25 Nov 201300:00	–	circl
Cvelist	CVE-2014-5007	17 Jan 202021:59	–	cvelist
Exploit DB	ManageEngine Desktop Central - Arbitrary File Upload / Remote Code Execution	1 Sep 201400:00	–	exploitdb
exploitpack	ManageEngine Desktop Central - Arbitrary File Upload Remote Code Execution	1 Sep 201400:00	–	exploitpack
Tenable Nessus	ManageEngine Desktop Central Arbitrary File Upload and RCE (Safe Check)	25 Mar 201500:00	–	nessus
NVD	CVE-2014-5007	17 Jan 202022:15	–	nvd
OpenVAS	ManageEngine Desktop Central < 8.0.293 Arbitrary File Upload Vulnerability	20 Nov 201300:00	–	openvas
Packet Storm	ManageEngine Desktop Central Remote Shell Upload	31 Aug 201400:00	–	packetstorm
Prion	Directory traversal	17 Jan 202022:15	–	prion

NVD

Node

zohocorp manageengine_desktop_centralRange7.0–9.0

zohocorp manageengine_desktop_central_managed_service_providersRange7.0–9.0

Source	Link
manageengine	www.manageengine.com/products/desktop-central/remote-code-execution.html
seclists	www.seclists.org/fulldisclosure/2014/Aug/88

Parameter	Position	Path	Description	CWE
actionToCall	query param	/statusUpdate?actionToCall=LFU&customerId=1337&fileName=../../../../../../shell.jsp&configDataID=1	Remote code execution via file upload in statusUpdate endpoint using filename parameter to write/execute arbitrary files.	CWE-22
customerId	query param	/statusUpdate?actionToCall=LFU&customerId=1337&fileName=../../../../../../shell.jsp&configDataID=1	Remote code execution via file upload in statusUpdate endpoint using filename parameter to write/execute arbitrary files.	CWE-22
fileName	query param	/statusUpdate?actionToCall=LFU&customerId=1337&fileName=../../../../../../shell.jsp&configDataID=1	Remote code execution via file upload in statusUpdate endpoint using filename parameter to write/execute arbitrary files.	CWE-22
configDataID	query param	/statusUpdate?actionToCall=LFU&customerId=1337&fileName=../../../../../../shell.jsp&configDataID=1	Remote code execution via file upload in statusUpdate endpoint using filename parameter to write/execute arbitrary files.	CWE-22
filename	query param	/mdm/mdmLogUploader?filename=..\..\..\..\webapps\DesktopCentral\shell.jsp	Arbitrary file upload via mdmLogUploader endpoint using filename parameter to upload a shell.	CWE-22
computerName	query param	/agentLogUploader?computerName=whatever1&domainName=whatever2&customerId=1337&filename=..\..\..\..\webapps\DesktopCentral\shell.jsp	Remote code execution via agentLogUploader endpoint by supplying a crafted filename parameter and identifiers.	CWE-22
domainName	query param	/agentLogUploader?computerName=whatever1&domainName=whatever2&customerId=1337&filename=..\..\..\..\webapps\DesktopCentral\shell.jsp	Remote code execution via agentLogUploader endpoint by supplying a crafted filename parameter and identifiers.	CWE-22
customerId	query param	/agentLogUploader?computerName=whatever1&domainName=whatever2&customerId=1337&filename=..\..\..\..\webapps\DesktopCentral\shell.jsp	Remote code execution via agentLogUploader endpoint by supplying a crafted filename parameter and identifiers.	CWE-22
filename	query param	/agentLogUploader?computerName=whatever1&domainName=whatever2&customerId=1337&filename=..\..\..\..\webapps\DesktopCentral\shell.jsp	Remote code execution via agentLogUploader endpoint by supplying a crafted filename parameter and identifiers.	CWE-22

21 Nov 2024 02:11Current

9.5High risk

Vulners AI Score9.5

CVSS 3.19.8

CVSS 210

EPSS0.48627

CWE-22