Lucene search
K

GLSA-200605-16 : CherryPy: Directory traversal vulnerability

🗓️ 31 May 2006 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 24 Views

The remote host is affected by the CherryPy directory traversal vulnerability. An attacker could exploit this flaw to obtain arbitrary files from the web server. Upgrade to version 2.1.1 or later

Related
Refs
Code
ReporterTitlePublishedViews
Family
Tenable Nessus
CherryPy < 2.1.1 staticfilter Directory Traversal Arbitrary File Access
22 Feb 200600:00
nessus
Tenable Nessus
CherryPy staticFilter Traversal Arbitrary File Access
22 Feb 200600:00
nessus
CVE
CVE-2006-0847
22 Feb 200602:00
cve
Cvelist
CVE-2006-0847
22 Feb 200602:00
cvelist
Debian CVE
CVE-2006-0847
22 Feb 200602:00
debiancve
EUVD
EUVD-2006-0001
7 Oct 202500:30
euvd
Github Security Blog
CherryPy Directory traversal vulnerability
1 May 202206:43
github
Gentoo Linux
CherryPy: Directory traversal vulnerability
30 May 200600:00
gentoo
NVD
CVE-2006-0847
22 Feb 200602:02
nvd
OpenVAS
Gentoo Security Advisory GLSA 200605-16 (cherrypy)
24 Sep 200800:00
openvas
Rows per page
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 200605-16.
#
# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike 
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(21614);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2006-0847");
  script_xref(name:"GLSA", value:"200605-16");

  script_name(english:"GLSA-200605-16 : CherryPy: Directory traversal vulnerability");
  script_summary(english:"Checks for updated package(s) in /var/db/pkg");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Gentoo host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The remote host is affected by the vulnerability described in GLSA-200605-16
(CherryPy: Directory traversal vulnerability)

    Ivo van der Wijk discovered that the 'staticfilter' component of
    CherryPy fails to sanitize input correctly.
  
Impact :

    An attacker could exploit this flaw to obtain arbitrary files from
    the web server.
  
Workaround :

    There is no known workaround at this time."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security.gentoo.org/glsa/200605-16"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"All CherryPy users should upgrade to the latest version:
    # emerge --sync
    # emerge --ask --oneshot --verbose '>=dev-python/cherrypy-2.1.1'"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:cherrypy");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2006/05/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2006/05/31");
  script_set_attribute(attribute:"vuln_publication_date", value:"2006/01/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
  script_family(english:"Gentoo Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;

if (qpkg_check(package:"dev-python/cherrypy", unaffected:make_list("ge 2.1.1"), vulnerable:make_list("lt 2.1.1"))) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:qpkg_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = qpkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "CherryPy");
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

06 Jan 2021 00:00Current
5.7Medium risk
Vulners AI Score5.7
CVSS 25
EPSS0.02327
24