Your submission was sent successfully! Close

CVE-2013-4885

Published: 26 October 2013

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.

Notes

AuthorNote
jdstrand
see full-disclosure for PoC
Priority

Low

Status

Package Release Status
nmap
Launchpad, Ubuntu, Debian
lucid Ignored
(reached end-of-life)
precise Not vulnerable
(code-not-present)
quantal Ignored
(reached end-of-life)
raring Ignored
(reached end-of-life)
saucy
Released (6.40-0.1)
trusty
Released (6.40-0.1)
upstream
Released (6.40)
utopic
Released (6.40-0.1)