Vulnerability Details : CVE-2011-1595
Directory traversal vulnerability in the disk_create function in disk.c in rdesktop before 1.7.0, when disk redirection is enabled, allows remote RDP servers to read or overwrite arbitrary files via a .. (dot dot) in a pathname.
Vulnerability category: Directory traversal
Exploit prediction scoring system (EPSS) score for CVE-2011-1595
Probability of exploitation activity in the next 30 days: 0.16%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 52 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-1595
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.3
|
MEDIUM | AV:A/AC:H/Au:N/C:P/I:P/A:P |
3.2
|
6.4
|
NIST |
CWE ids for CVE-2011-1595
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-1595
-
https://bugzilla.redhat.com/show_bug.cgi?id=676252
676252 – (CVE-2011-1595) CVE-2011-1595 rdesktop remote file accessExploit;Patch
-
http://sourceforge.net/mailarchive/message.php?msg_id=27376554
rdesktop / [rdesktop-announce] rdesktop 1.7.0 released
-
http://www.securityfocus.com/bid/47419
rdesktop Disk Redirection Directory Traversal Vulnerability
-
http://sourceforge.net/projects/rdesktop/files/rdesktop/1.7.0/rdesktop-1.7.0.tar.gz/download
Download rdesktop from SourceForge.netPatch
-
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061316.html
[SECURITY] Fedora 14 Update: rdesktop-1.6.0-11.fc14
-
http://www.ubuntu.com/usn/USN-1136-1
USN-1136-1: rdesktop vulnerability | Ubuntu security notices
-
http://securitytracker.com/id?1025525
rdesktop Lets Remote Servers Read and Write Files on the Target User's System - SecurityTracker
-
http://www.mandriva.com/security/advisories?name=MDVSA-2011:102
mandriva.com
-
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061170.html
[SECURITY] Fedora 15 Update: rdesktop-1.6.0-12.fc15
-
http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061309.html
[SECURITY] Fedora 13 Update: rdesktop-1.6.0-10.fc13
-
https://rhn.redhat.com/errata/RHSA-2011-0506.html
RHSA-2011:0506 - Security Advisory - Red Hat Customer Portal
-
http://rdesktop.svn.sourceforge.net/viewvc/rdesktop?view=revision&revision=1626
404 Not FoundPatch
-
http://security.gentoo.org/glsa/glsa-201210-03.xml
rdesktop: Directory Traversal (GLSA 201210-03) — Gentoo security
Products affected by CVE-2011-1595
- cpe:2.3:a:rdesktop:rdesktop:*:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.0.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.1.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.2.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:rdesktop:rdesktop:1.4.1:*:*:*:*:*:*:*