CVE-2010-5086

2012-03-19 19:55:02 2012-03-20 00:19:23

Directory traversal vulnerability in wiki/rankings.php in Bitweaver 2.7 and 2.8.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the style parameter.

Vector

NETWORK

Complexity

LOW

Authentication

NONE

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Bitweaver Bitweaver 2.7 (not an official CPE) Bitweaver Bitweaver 2.8.1 (not an official CPE)

Bitweaver - Bitweaver

Advisory	Patch	Confirmed	Link
			52176
			18530
			40432
			http://cross-site-scripting.blogspot.com/2010/07/bit-wea...

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (ID 22)

Related CAPEC 7 Relative Path Traversal (CAPEC-ID 139) Directory Traversal (CAPEC-ID 213) File System Function Injection, Content Based (CAPEC-ID 23) Using Slashes and URL Encoding Combined to Bypass Validation Logic (CAPEC-ID 64) Manipulating Input to File System Calls (CAPEC-ID 76) Using Escaped Slashes in Alternate Encoding (CAPEC-ID 78) Using Slashes in Alternate Encoding (CAPEC-ID 79)