Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2011-0063

The _list_file_get function in lib/Majordomo.pm in Majordomo 2 20110203 and earlier allows remote attackers to conduct directory traversal attacks and read arbitrary files via a ./.../ sequence in the "extra" parameter to the help command, which causes the regular expression to produce .. (dot dot) sequences. NOTE: this vulnerability is due to an incomplete fix for CVE-2011-0049.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.9
EPSS Ranking 99.6%
CVSS Severity
CVSS v2 Score 5.0
Products affected by CVE-2011-0063
  • Mj2 » Majordomo 2 » Version: Any
    cpe:2.3:a:mj2:majordomo_2:*
  • Mj2 » Majordomo 2 » Version: 20110101
    cpe:2.3:a:mj2:majordomo_2:20110101
  • Mj2 » Majordomo 2 » Version: 20110102
    cpe:2.3:a:mj2:majordomo_2:20110102
  • Mj2 » Majordomo 2 » Version: 20110103
    cpe:2.3:a:mj2:majordomo_2:20110103
  • Mj2 » Majordomo 2 » Version: 20110104
    cpe:2.3:a:mj2:majordomo_2:20110104
  • Mj2 » Majordomo 2 » Version: 20110105
    cpe:2.3:a:mj2:majordomo_2:20110105
  • Mj2 » Majordomo 2 » Version: 20110106
    cpe:2.3:a:mj2:majordomo_2:20110106
  • Mj2 » Majordomo 2 » Version: 20110107
    cpe:2.3:a:mj2:majordomo_2:20110107
  • Mj2 » Majordomo 2 » Version: 20110108
    cpe:2.3:a:mj2:majordomo_2:20110108
  • Mj2 » Majordomo 2 » Version: 20110109
    cpe:2.3:a:mj2:majordomo_2:20110109
  • Mj2 » Majordomo 2 » Version: 20110110
    cpe:2.3:a:mj2:majordomo_2:20110110
  • Mj2 » Majordomo 2 » Version: 20110111
    cpe:2.3:a:mj2:majordomo_2:20110111
  • Mj2 » Majordomo 2 » Version: 20110112
    cpe:2.3:a:mj2:majordomo_2:20110112
  • Mj2 » Majordomo 2 » Version: 20110113
    cpe:2.3:a:mj2:majordomo_2:20110113
  • Mj2 » Majordomo 2 » Version: 20110114
    cpe:2.3:a:mj2:majordomo_2:20110114
  • Mj2 » Majordomo 2 » Version: 20110115
    cpe:2.3:a:mj2:majordomo_2:20110115
  • Mj2 » Majordomo 2 » Version: 20110116
    cpe:2.3:a:mj2:majordomo_2:20110116
  • Mj2 » Majordomo 2 » Version: 20110117
    cpe:2.3:a:mj2:majordomo_2:20110117
  • Mj2 » Majordomo 2 » Version: 20110118
    cpe:2.3:a:mj2:majordomo_2:20110118
  • Mj2 » Majordomo 2 » Version: 20110119
    cpe:2.3:a:mj2:majordomo_2:20110119
  • Mj2 » Majordomo 2 » Version: 20110120
    cpe:2.3:a:mj2:majordomo_2:20110120
  • Mj2 » Majordomo 2 » Version: 20110121
    cpe:2.3:a:mj2:majordomo_2:20110121
  • Mj2 » Majordomo 2 » Version: 20110122
    cpe:2.3:a:mj2:majordomo_2:20110122
  • Mj2 » Majordomo 2 » Version: 20110123
    cpe:2.3:a:mj2:majordomo_2:20110123
  • Mj2 » Majordomo 2 » Version: 20110124
    cpe:2.3:a:mj2:majordomo_2:20110124
  • Mj2 » Majordomo 2 » Version: 20110125
    cpe:2.3:a:mj2:majordomo_2:20110125
  • Mj2 » Majordomo 2 » Version: 20110126
    cpe:2.3:a:mj2:majordomo_2:20110126
  • Mj2 » Majordomo 2 » Version: 20110127
    cpe:2.3:a:mj2:majordomo_2:20110127
  • Mj2 » Majordomo 2 » Version: 20110128
    cpe:2.3:a:mj2:majordomo_2:20110128
  • Mj2 » Majordomo 2 » Version: 20110129
    cpe:2.3:a:mj2:majordomo_2:20110129
  • Mj2 » Majordomo 2 » Version: 20110130
    cpe:2.3:a:mj2:majordomo_2:20110130
  • Mj2 » Majordomo 2 » Version: 20110131
    cpe:2.3:a:mj2:majordomo_2:20110131
  • Mj2 » Majordomo 2 » Version: 20110201
    cpe:2.3:a:mj2:majordomo_2:20110201
  • Mj2 » Majordomo 2 » Version: 20110202
    cpe:2.3:a:mj2:majordomo_2:20110202


Products
Pricing
Contact Us

Shodan ® - All rights reserved