Lucene search
+L

Mathopd < 1.5p7 Directory Traversal Vulnerability

🗓️ 16 Feb 2012 00:00:00Reported by Copyright (C) 2012 Greenbone AGType 
openvas
 openvas
🔗 plugins.openvas.org👁 20 Views

Mathopd < 1.5p7 Directory Traversal Vulnerability. Vulnerability allows directory traversal due to insufficient user input sanitation

Related
Refs
Code
ReporterTitlePublishedViews
Family
cve
CVE-2012-1050
13 Feb 201219:00
cve
cvelist
CVE-2012-1050
13 Feb 201219:00
cvelist
euvd
EUVD-2012-1088
7 Oct 202500:30
euvd
nvd
CVE-2012-1050
13 Feb 201219:55
nvd
openvas
Mathopd Directory Traversal Vulnerability
16 Feb 201200:00
openvas
prion
Directory traversal
13 Feb 201219:55
prion
ubuntucve
CVE-2012-1050
13 Feb 201219:55
ubuntucve
# SPDX-FileCopyrightText: 2012 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if (description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.103427");
  script_cve_id("CVE-2012-1050");
  script_version("2025-01-17T15:39:18+0000");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:N/A:N");

  script_name("Mathopd < 1.5p7 Directory Traversal Vulnerability");

  script_xref(name:"URL", value:"http://www.securityfocus.com/bid/51872");
  script_xref(name:"URL", value:"http://www.mail-archive.com/mathopd%40mathopd.org/msg00392.html");
  script_xref(name:"URL", value:"http://www.securityfocus.com/archive/1/521507");

  script_tag(name:"last_modification", value:"2025-01-17 15:39:18 +0000 (Fri, 17 Jan 2025)");
  script_tag(name:"creation_date", value:"2012-02-16 15:14:41 +0100 (Thu, 16 Feb 2012)");
  script_tag(name:"qod_type", value:"remote_banner");
  script_category(ACT_GATHER_INFO);
  script_family("Web Servers");
  script_copyright("Copyright (C) 2012 Greenbone AG");
  script_dependencies("gb_get_http_banner.nasl");
  script_mandatory_keys("Mathopd/banner");
  script_require_ports("Services/www", 80);

  script_tag(name:"summary", value:"Mathopd is prone to a directory traversal vulnerability because it
fails to sufficiently sanitize user-supplied input data.");

  script_tag(name:"impact", value:"Exploiting the issue may allow an attacker to obtain sensitive
information that could aid in further attacks.");

  script_tag(name:"affected", value:"Versions prior to Mathopd 1.5p7 are vulnerable.");

  script_tag(name:"solution", value:"Updates are available. Please see the references for more information.");

  script_tag(name:"solution_type", value:"VendorFix");

  exit(0);
}

include("http_func.inc");
include("port_service_func.inc");
include("host_details.inc");
include("version_func.inc");

port = http_get_port(default:80);
banner = http_get_remote_headers(port: port);
if(!banner || "Server: Mathopd/" >!< banner)exit(0);

version = eregmatch(pattern:"Server: Mathopd/([0-9.p]+)",string:banner);
vers = version[1];

if(vers && "unknown" >!< vers) {

  if("p" >< vers) {
    vers1 = split(vers,sep:"p",keep:FALSE);
    if(!isnull(vers1[1])) {
      vers = vers1[0] + '.p' + vers1[1];
    }
  }

  if(version_is_less(version: vers, test_version: "1.5.p7")) {
    security_message(port:port);
    exit(0);
  }
}

exit(0);

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jan 2025 00:00Current
6.5Medium risk
Vulners AI Score6.5
CVSS 24.3
EPSS0.0347
20