Lucene search
K

15 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2013-4885

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload arbitrarily named files...

6.8CVSS5.5AI score0.07217EPSS
Exploits2References2
Amazon
Amazon
added 2016/03/22 12:0 a.m.59 views

Low: nmap

Issue Overview: The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload arbitrarily named files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences. Affected Packages:...

6.8CVSS6.9AI score0.07217EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2015/01/19 12:0 a.m.36 views

Oracle Solaris Third-Party Patch Update : nmap (cve_2013_4885_unrestricted_file)

The remote Solaris system is missing necessary patches to address security updates : - The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload 'arbitrarily named' files via a crafted FullName parameter in a response,...

6.8CVSS5.4AI score0.07217EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.25 views

openSUSE Security Update : nmap (openSUSE-SU-2013:1561-1)

nmap was updated to fix the http-domino-enum-passwords scripts. If you ran the fortunately non-default http-domino-enum-passwords script with the fortunately also non-default domino-enum-passwords.idpath parameter against a malicious server, it could cause an arbitrarily named file to to be writt...

6.8CVSS5.3AI score0.07217EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.30 views

openSUSE Security Update : nmap (openSUSE-SU-2013:1579-1)

nmap was updated to fix bnc844953/CVE-2013-4885: There was a vulnerability in one of our 437 NSE scripts. If you ran the fortunately non-default http-domino-enum-passwords script with the fortunately also non-default domino-enum-passwords.idpath parameter against a malicious server, it could caus...

6.8CVSS5.3AI score0.07217EPSS
Exploits2References3
OSV
OSV
added 2013/10/26 5:55 p.m.7 views

CVE-2013-4885

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences...

6.3AI score
Exploits0References7
UbuntuCve
UbuntuCve
added 2013/10/26 5:55 p.m.29 views

CVE-2013-4885

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences...

6.8CVSS5.9AI score0.07217EPSS
Exploits2References2
CVE
CVE
added 2013/10/26 5:0 p.m.65 views

CVE-2013-4885

CVE-2013-4885 affects the Nmap NSE script http-domino-enum-passwords.nse (pre-6.40). When domino-enum-passwords.idpath is set, a crafted FullName response can cause the remote server to write arbitrarily named files via directory traversal sequences. The vulnerability is tied to the NSE script lo...

6.8CVSS6.3AI score0.07217EPSS
Exploits2References6Affected Software1
OSV
OSV
added 2013/10/17 6:49 p.m.3 views

MGASA-2013-0305 Updated nmap package fixes CVE-2013-4885

Updated nmap packages fix security vulnerability: It is possible to write arbitrary files to a remote system, through a specially crafted server response for NMAP http-domino-enum-passwords.nse script from nmap before 6.40 CVE-2013-4885...

6.8CVSS6.6AI score0.07217EPSS
Exploits2References4
Mageia
Mageia
added 2013/10/17 6:49 p.m.29 views

Updated nmap package fixes CVE-2013-4885

Updated nmap packages fix security vulnerability: It is possible to write arbitrary files to a remote system, through a specially crafted server response for NMAP http-domino-enum-passwords.nse script from nmap before 6.40 CVE-2013-4885...

6.8CVSS2.6AI score0.07217EPSS
Exploits2References3
seebug.org
seebug.org
added 2013/09/03 12:0 a.m.29 views

Nmap 任意文件写漏洞(CVE-2013-4885)

BUGTRAQ ID: 62024 CVECAN ID: CVE-2013-4885 nmap是一款用于网络发现(Network Discovery)和安全审计(Security Auditing)的网络安全工具,它是自由软件。 Nmap 6.25在http-domino-enum-passwords NSE脚本内存在任意文件上传漏洞,攻击者可利用此漏洞以当前用户权限写任意文件。 0 Nmap 6.25 厂商补丁: Nmap ---- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://nmap.org/download.html nmap --script...

6.8CVSS6.3AI score0.07217EPSS
Exploits2
OpenVAS
OpenVAS
added 2013/09/02 12:0 a.m.22 views

Fedora Update for nmap FEDORA-2013-14786

Check for the Version of nmap OpenVAS Vulnerability Test Fedora Update for nmap FEDORA-2013-14786 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms o...

6.8CVSS6.4AI score0.07217EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2013/09/02 12:0 a.m.20 views

Fedora Update for nmap FEDORA-2013-14786

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.5AI score0.07217EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2013/08/28 12:0 a.m.33 views

Fedora 18 : nmap-6.40-1.fc18 (2013-14786)

updated for 6.40 - fixes CVE-2013-4885 nmap: arbitrary file upload flaw in http-domino-enum-passwords NSE script Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it...

6.8CVSS5.6AI score0.07217EPSS
Exploits2References3
Circl
Circl
added 2013/08/06 12:0 a.m.19 views

CVE-2013-4885

creationtimestamp| type| source ---|---|--- 2013-08-06 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/38741...

6.8CVSS5.8AI score0.07217EPSS
Exploits2References1
Rows per page
Query Builder