CVE Vulnerability

CVE-2008-1606

Multiple directory traversal vulnerabilities in Elastic Path (EP) 4.1 and 4.1.1 allow remote attackers to (1) download arbitrary files via a .. (dot dot) in the file parameter to manager/getImportFileRedirect.jsp, (2) upload arbitrary files via a ".." (dot dot backslash) in the file parameter to importData.jsp, and (3) list directory contents via a .. (dot dot) in the dir parameter to manager/fileManager.jsp.

6 /10

CVSS v2.0 :

V3 Legend

Vector :

Exploitability : 6.8 / Impact : 6.4

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

Scope

References
Link Resource
http://weblog.nomejortu.com/?p=37
http://www.mwrinfosecurity.com/publications/mwri_elastic-path-arbitrary-file-system-access_2008-02-22.pdf Exploit
http://www.securityfocus.com/bid/28352
http://secunia.com/advisories/29496 Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41364
https://exchange.xforce.ibmcloud.com/vulnerabilities/41356
http://developer.elasticpath.com/entry!default.jspa?categoryID=4&externalID=1334
Configurations

Configuration 1

cpe:2.3:a:elastic_path:elastic_path:4.1.1:*:*:*:*:*:*:*
cpe:2.3:a:elastic_path:elastic_path:4.1:*:*:*:*:*:*:*
Information

Published : 2008-04-01 04:44

Updated : 2018-08-13 09:47

NVD link : CVE-2008-1606

Mitre link : CVE-2008-1606

Products Affected
No products.
CWE
CWE-22