Vulners
Lucene search
Rapid7 Security Advisory 24
| Reporter | Title | Published | Views | Family All 8 |
|---|---|---|---|---|
 | Resin < 3.0.19 Directory Traversal and Path Disclosure Vulnerabilities | 16 May 200600:00 | – | nessus |
| Resin for Windows Encoded URI Traversal Arbitrary File Access | 27 May 200600:00 | – | nessus |
 | CVE-2006-1953 | 17 May 200610:00 | – | cve |
 | CVE-2006-1953 | 17 May 200610:00 | – | cvelist |
 | EUVD-2006-1953 | 7 Oct 202500:30 | – | euvd |
 | CVE-2006-1953 | 17 May 200610:06 | – | nvd |
 | Directory traversal | 17 May 200610:06 | – | prion |
 | Caucho Resin Windows Directory Traversal Vulnerability | 17 May 200600:00 | – | securityvulns |
`_______________________________________________________________________
Rapid7 Security Advisory
Visit http://www.rapid7.com/ to download NeXpose,
SC Magazine Winner of Best Vulnerability Management product.
_______________________________________________________________________
Rapid7 Advisory R7-0024
Caucho Resin Windows Directory Traversal Vulnerability
Published: May 16, 2006
Revision: 1.0
http://www.rapid7.com/advisories/R7-0024.html
CVE: CVE-2006-1953
1. Affected system(s):
KNOWN VULNERABLE:
o Caucho Resin v3.0.18 for Windows
o Caucho Resin v3.0.17 for Windows
NOT VULNERABLE:
o Caucho Resin v3.0.19
o Caucho Resin v3.0.16 and earlier
2. Summary
The Caucho Resin web application server for Windows contains a
directory traversal vulnerability that allows remote
unauthenticated users to download any file from the system. It is
possible to download files from any drive on the system.
Rapid7 have updated NeXpose to check for this vulnerability. Licensed
customers will receive the new vulnerability checks automatically.
Visit http://www.rapid7.com to register for a free demo of NeXpose.
3. Vendor status and information
Caucho Technology, Inc.
http://www.caucho.com/
Caucho was notified of this vulnerability on April 20th, 2006.
They fixed this vulnerability in the latest unofficial snapshot
of Resin 3.0.19, available from Caucho's website.
4. Solution
Upgrade to the latest snapshot version of Resin, version 3.0.19.
5. Detailed analysis
Caucho Resin is a servlet and JSP server. Resin ships with its own
standalone web server which runs by default on port 8080. Any remote
user can request URLs of the form:
http://victim:8080/C:%5C/
to access the root of the C: drive (and any files below it). Any
drive letter can be specified. Only Resin on Windows is vulnerable.
This vulnerability appears to have been introduced in Resin
version 3.0.17, although this has not been confirmed by the vendor.
6. Contact Information
Rapid7 Security Advisories
Email: [email protected]
Web: http://www.rapid7.com/
Phone: +1 (617) 603-0700
7. Disclaimer and Copyright
Rapid7, LLC is not responsible for the misuse of the information
provided in our security advisories. These advisories are a service
to the professional security community. There are NO WARRANTIES
with regard to this information. Any application or distribution of
this information constitutes acceptance AS IS, at the user's own
risk. This information is subject to change without notice.
This advisory Copyright (C) 2006 Rapid7, LLC. Permission is
hereby granted to redistribute this advisory, providing that no
changes are made and that the copyright notices and disclaimers
remain intact.
`
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
22 May 2006 00:00Current
0.5Low risk
Vulners AI Score0.5
EPSS0.0091