Vulnerability Details CVE-2013-4885
The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.064
EPSS Ranking 90.6%
CVSS Severity
CVSS v2 Score 6.8
References
- http://lists.opensuse.org/opensuse-updates/2013-10/msg00030.html
- http://lists.opensuse.org/opensuse-updates/2013-10/msg00035.html
- http://nmap.org/changelog.html
- http://packetstormsecurity.com/files/122719/TWSL2013-025.txt
- https://github.com/drk1wi/portspoof/commit/1791fe4e2b9e5b5c8e000551ab60a64a29d924c3
- https://www.trustwave.com/spiderlabs/advisories/TWSL2013-025.txt
- http://lists.opensuse.org/opensuse-updates/2013-10/msg00030.html
- http://lists.opensuse.org/opensuse-updates/2013-10/msg00035.html
- http://nmap.org/changelog.html
- http://packetstormsecurity.com/files/122719/TWSL2013-025.txt
- https://github.com/drk1wi/portspoof/commit/1791fe4e2b9e5b5c8e000551ab60a64a29d924c3
- https://www.trustwave.com/spiderlabs/advisories/TWSL2013-025.txt
Products affected by CVE-2013-4885
-
cpe:2.3:a:nmap:nmap:2.05
-
cpe:2.3:a:nmap:nmap:2.06
-
cpe:2.3:a:nmap:nmap:2.07
-
cpe:2.3:a:nmap:nmap:2.08
-
cpe:2.3:a:nmap:nmap:2.09
-
cpe:2.3:a:nmap:nmap:2.1
-
cpe:2.3:a:nmap:nmap:2.10
-
cpe:2.3:a:nmap:nmap:2.11
-
cpe:2.3:a:nmap:nmap:2.12
-
cpe:2.3:a:nmap:nmap:2.2
-
cpe:2.3:a:nmap:nmap:2.3
-
cpe:2.3:a:nmap:nmap:2.50
-
cpe:2.3:a:nmap:nmap:2.51
-
cpe:2.3:a:nmap:nmap:2.52
-
cpe:2.3:a:nmap:nmap:2.53
-
cpe:2.3:a:nmap:nmap:2.54
-
cpe:2.3:a:nmap:nmap:2.99
-
cpe:2.3:a:nmap:nmap:3.00
-
cpe:2.3:a:nmap:nmap:3.10
-
cpe:2.3:a:nmap:nmap:3.15
-
cpe:2.3:a:nmap:nmap:3.20
-
cpe:2.3:a:nmap:nmap:3.25
-
cpe:2.3:a:nmap:nmap:3.26
-
cpe:2.3:a:nmap:nmap:3.27
-
cpe:2.3:a:nmap:nmap:3.28
-
cpe:2.3:a:nmap:nmap:3.30
-
cpe:2.3:a:nmap:nmap:3.40
-
cpe:2.3:a:nmap:nmap:3.45
-
cpe:2.3:a:nmap:nmap:3.48
-
cpe:2.3:a:nmap:nmap:3.50
-
cpe:2.3:a:nmap:nmap:3.55
-
cpe:2.3:a:nmap:nmap:3.70
-
cpe:2.3:a:nmap:nmap:3.75
-
cpe:2.3:a:nmap:nmap:3.81
-
cpe:2.3:a:nmap:nmap:3.90
-
cpe:2.3:a:nmap:nmap:3.91
-
cpe:2.3:a:nmap:nmap:3.93
-
cpe:2.3:a:nmap:nmap:3.94
-
cpe:2.3:a:nmap:nmap:3.95
-
cpe:2.3:a:nmap:nmap:3.96
-
cpe:2.3:a:nmap:nmap:3.98
-
cpe:2.3:a:nmap:nmap:3.99
-
cpe:2.3:a:nmap:nmap:3.999
-
cpe:2.3:a:nmap:nmap:3.9999
-
cpe:2.3:a:nmap:nmap:4.00
-
cpe:2.3:a:nmap:nmap:4.01
-
cpe:2.3:a:nmap:nmap:4.02
-
cpe:2.3:a:nmap:nmap:4.03
-
cpe:2.3:a:nmap:nmap:4.04
-
cpe:2.3:a:nmap:nmap:4.10
-
cpe:2.3:a:nmap:nmap:4.11
-
cpe:2.3:a:nmap:nmap:4.20
-
cpe:2.3:a:nmap:nmap:4.21
-
cpe:2.3:a:nmap:nmap:4.22
-
cpe:2.3:a:nmap:nmap:4.49
-
cpe:2.3:a:nmap:nmap:4.50
-
cpe:2.3:a:nmap:nmap:4.51
-
cpe:2.3:a:nmap:nmap:4.52
-
cpe:2.3:a:nmap:nmap:4.53
-
cpe:2.3:a:nmap:nmap:4.60
-
cpe:2.3:a:nmap:nmap:4.62
-
cpe:2.3:a:nmap:nmap:4.65
-
cpe:2.3:a:nmap:nmap:4.68
-
cpe:2.3:a:nmap:nmap:4.75
-
cpe:2.3:a:nmap:nmap:4.76
-
cpe:2.3:a:nmap:nmap:4.85
-
cpe:2.3:a:nmap:nmap:4.90
-
cpe:2.3:a:nmap:nmap:5.00
-
cpe:2.3:a:nmap:nmap:5.10
-
cpe:2.3:a:nmap:nmap:5.20
-
cpe:2.3:a:nmap:nmap:5.21
-
cpe:2.3:a:nmap:nmap:5.30
-
cpe:2.3:a:nmap:nmap:5.35
-
cpe:2.3:a:nmap:nmap:5.50
-
cpe:2.3:a:nmap:nmap:5.51
-
cpe:2.3:a:nmap:nmap:5.59
-
cpe:2.3:a:nmap:nmap:5.61
-
cpe:2.3:a:nmap:nmap:6.00
-
cpe:2.3:a:nmap:nmap:6.01
-
cpe:2.3:a:nmap:nmap:6.20
-
cpe:2.3:a:nmap:nmap:6.25
-
cpe:2.3:o:opensuse:opensuse:12.3