U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website
2017-02-04T02:05:07
ID H1:203311 Type hackerone Reporter generaleg Modified 2017-04-07T20:05:31
Description
A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!
{"id": "H1:203311", "hash": "ca64998645e2c352cfc5467db1b68abb", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "2017-04-07T20:05:31", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2018-04-19T17:34:13", "history": [{"lastseen": "2017-08-28T23:19:24", "bulletin": {"id": "H1:203311", "hash": "0a2f44f4d8c8ee3569aa27cb12759470672a851e219850e7b7d8ab8a62231509", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "1970-01-01T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2017-08-28T23:19:24", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/production/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"url": "/generaleg", "is_me?": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/132/911/95c0f4e16257af7b3af526759e8495b6ca02feb4_small.jpg?1482842575"}, "hacker_mediation": false, "disabled": false, "username": "generaleg"}}, "differentElements": ["modified"], "edition": 2}, {"lastseen": "2017-10-22T16:35:07", "bulletin": {"id": "H1:203311", "hash": "a5fc9dd969f22322a9ef18c462410bc4100be2e6696cc661527c3b7a68407a77", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "2017-04-07T20:05:31", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2017-10-22T16:35:07", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 6.1, "modified": "2017-10-22T16:35:07"}}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/production/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"url": "/generaleg", "is_me?": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/132/911/0bced0d6da4cd47e4d9616023ee67654cd6880a6_small.jpg?1508675544"}, "hacker_mediation": false, "disabled": false, "username": "generaleg"}}, "differentElements": ["h1reporter"], "edition": 4}, {"lastseen": "2017-08-29T13:11:23", "bulletin": {"id": "H1:203311", "hash": "26fa64245081a1bea29039bcef7a8e47a7c9816997c3b223b50c5905e5b59fa7", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "2017-04-07T20:05:31", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2017-08-29T13:11:23", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/production/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"url": "/generaleg", "is_me?": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/132/911/95c0f4e16257af7b3af526759e8495b6ca02feb4_small.jpg?1482842575"}, "hacker_mediation": false, "disabled": false, "username": "generaleg"}}, "differentElements": ["h1reporter"], "edition": 3}, {"lastseen": "2017-08-22T11:09:39", "bulletin": {"id": "H1:203311", "hash": "8dbdd268eb3667422a8f6140f8d455469522ccf2000b24cd654fd857d0157c67", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "1970-01-01T00:00:00", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2017-08-22T11:09:39", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/production/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"disabled": false, "url": "/generaleg", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/132/911/95c0f4e16257af7b3af526759e8495b6ca02feb4_small.jpg?1482842575"}, "hacker_mediation": false, "username": "generaleg"}}, "differentElements": ["h1reporter"], "edition": 1}, {"lastseen": "2018-02-07T16:57:59", "bulletin": {"id": "H1:203311", "hash": "f40c6c69d5884ac63d705dea1e33e6da7503bca14b0f26eb099ba8551eb8b367", "type": "hackerone", "bulletinFamily": "bugbounty", "title": "U.S. Dept Of Defense: Bypass file access control vulnerability on a DoD website", "description": "A DoD website was configured in a manner that allowed a remote user to bypass a file access control. This vulnerability could have allowed the user to view potentially sensitive system files. @generaleg able to demonstrate this vulnerability by crafting a specially formatted URL. Thanks @generaleg!", "published": "2017-02-04T02:05:07", "modified": "2017-04-07T20:05:31", "cvss": {"vector": "NONE", "score": 0.0}, "href": "https://hackerone.com/reports/203311", "reporter": "generaleg", "references": [], "cvelist": [], "lastseen": "2018-02-07T16:57:59", "history": [], "viewCount": 0, "enchantments": {"score": {"vector": "AV:N/AC:L/Au:M/C:C/I:C/A:C/", "value": 8.3, "modified": "2018-02-07T16:57:59"}}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/production/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"url": "/generaleg", "hackerone_triager": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/production/000/132/911/0bced0d6da4cd47e4d9616023ee67654cd6880a6_small.jpg?1508675544"}, "hacker_mediation": false, "disabled": false, "username": "generaleg", "is_me?": false}}, "differentElements": ["h1team", "h1reporter"], "edition": 5}], "viewCount": 0, "enchantments": {"score": {"value": 3.2, "vector": "NONE", "modified": "2018-04-19T17:34:13"}, "dependencies": {"references": [], "modified": "2018-04-19T17:34:13"}, "vulnersScore": 3.2}, "objectVersion": "1.4", "bounty": 0.0, "bountyState": "resolved", "h1team": {"url": "https://hackerone.com/deptofdefense", "handle": "deptofdefense", "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/016/064/3ce323292157404a24a24ff6f728eb0896950f2a_small.png?1477763288", "medium": "https://profile-photos.hackerone-user-content.com/000/016/064/6a9705b6496b1e2af08100674a0985bd20ea3879_medium.png?1477763288"}}, "h1reporter": {"url": "/generaleg", "hackerone_triager": false, "profile_picture_urls": {"small": "https://profile-photos.hackerone-user-content.com/000/132/911/0bced0d6da4cd47e4d9616023ee67654cd6880a6_small.jpg?1508675544"}, "hacker_mediation": false, "disabled": false, "username": "generaleg", "is_me?": false}, "_object_type": "robots.models.hackerone.HackerOneBulletin", "_object_types": ["robots.models.hackerone.HackerOneBulletin", "robots.models.base.Bulletin"]}
