Vulners
Lucene search
Allied Telesis AT-GS950/8 Directory Traversal
🗓️ 30 Nov 2019 00:00:00Reported by N. H. SprengerType 
packetstorm🔗 packetstormsecurity.com👁 301 Views
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | Allied Telesis AT-GS950/8 Directory Traversal Vulnerability | 30 Nov 201900:00 | – | zdt |
 | CVE-2019-18922 | 16 Jan 202400:17 | – | circl |
 | Allied Telesis AT-GS950/8 Directory Traversal Vulnerability | 2 Dec 201900:00 | – | cnvd |
 | CVE-2019-18922 | 29 Nov 201918:51 | – | cve |
 | CVE-2019-18922 | 29 Nov 201918:51 | – | cvelist |
 | Allied Telesis AT-GS950/8 - Local File Inclusion | 6 Jun 202603:01 | – | nuclei |
 | CVE-2019-18922 | 29 Nov 201919:15 | – | nvd |
 | Generic HTTP Directory Traversal / File Inclusion (Web Root) - Active Check | 18 Apr 201700:00 | – | openvas |
 | Directory traversal | 29 Nov 201919:15 | – | prion |
 | CVE-2019-18922 | 9 Jan 202610:17 | – | redhatcve |
10
`-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
=============================================
CVEID: CVE-2019-18922
NAME OF AFFECTED PRODUCT: Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047]
PROBLEM TYPE: Directory Traversal
DESCRIPTION: A Directory Traversal in the Web interface of the Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] allows unauthenticated attackers to read arbitrary system files via a GET request.
NOTE: This is an End-of-Life product.
=============================================
I. VULNERABILITY
- -------------------------
The Allied Telesis AT-GS950/8 Network Switch with Firmware until AT-S107 V.1.1.3 [1.00.047]
is confirmed to have an Directory Traversal Vulnerability.
II. BACKGROUND
- -------------------------
The AT-S107 Firmware is used for Configuration through an Web-Interface.
III. DESCRIPTION
- -------------------------
A GET-Request with the Path http://[IP]/../../../../../../etc/passwd shows the File-Content.
V. BUSINESS IMPACT
- -------------------------
A Attacker can read arbitrary System-Files.
VI. SYSTEMS AFFECTED
- -------------------------
Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047].
VII. CREDITS
- -------------------------
The Vulnerability has been discovered by the Security-Team at the University Bayreuth. [N. H. Sprenger, Dr. H. Benda].
VIII. LEGAL NOTICES
- -------------------------
The information contained within this advisory is supplied "as-is" with no
warranties or guarantees of fitness of use or otherwise.
=============================================
-----BEGIN PGP SIGNATURE-----
iQEzBAEBCAAdFiEEJliv/QRedf6UzVmWtNym7A91fYQFAl3ftoYACgkQtNym7A91
fYQvcwgAqSC6BU4EFbZvSX/mFecjeEIwphIgEp3n1QPb2gwwJHA3DGYdWNzp05YD
ZytxPofVoH+bWxZWun7vMi0c4HhZHPM3CJaJmcMoahSI2FEFfytQYbhcN/oWLCl+
ahc1J062wj2lnwh7gmLrdUX0RD2oM0VVnaU4gNAYMykVGTuQVVjTi2YwHFysaz1T
zEJQXOHxrdUC4BPgaYdimpmJts4M6IxCghYRWsMOTObKFlmfMVMQpsc+OgKF34U2
aWRJQq05AE4FYYYHg81pFVcjVWRQ8ZOObEl4OgwTCY+vWwMS0BK4MZXMQkvB0y8t
b6hbNAeasEaQ4g3SrzTe5273F7HF9g==
=ZqDR
-----END PGP SIGNATURE-----
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
30 Nov 2019 00:00Current
0.4Low risk
Vulners AI Score0.4
EPSS0.87606