CVE-2013-4885
CVE-2013-4885
The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.
Affected products
n/a · n/apublic PoCs found — 2
cve_referencepacketstormsecurity.com/files/122719/TWSL2013-025.txtunverifiedexploitdbwww.exploit-db.com/exploits/38741unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.opensuse.org/opensuse-updates/2013-10/msg00030.htmlhttp://lists.opensuse.org/opensuse-updates/2013-10/msg00035.htmlhttp://nmap.org/changelog.htmlhttp://packetstormsecurity.com/files/122719/TWSL2013-025.txthttps://github.com/drk1wi/portspoof/commit/1791fe4e2b9e5b5c8e000551ab60a64a29d924c3https://www.trustwave.com/spiderlabs/advisories/TWSL2013-025.txt