Vulnerability Details : CVE-2009-2265
Public exploit exists!
Multiple directory traversal vulnerabilities in FCKeditor before 2.6.4.1 allow remote attackers to create executable files in arbitrary directories via directory traversal sequences in the input to unspecified connector modules, as exploited in the wild for remote code execution in July 2009, related to the file browser and the editor/filemanager/connectors/ directory.
Vulnerability category: Directory traversalExecute code
Exploit prediction scoring system (EPSS) score for CVE-2009-2265
Probability of exploitation activity in the next 30 days: 97.27%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2009-2265
-
ColdFusion 8.0.1 Arbitrary File Upload and Execute
Disclosure Date: 2009-07-03First seen: 2020-04-26exploit/windows/http/coldfusion_fckeditorThis module exploits the Adobe ColdFusion 8.0.1 FCKeditor 'CurrentFolder' File Upload and Execute vulnerability. Authors: - MC <mc@metasploit.com>
CVSS scores for CVE-2009-2265
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2009-2265
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-2265
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00710.html
-
http://isc.sans.org/diary.html?storyid=6724
- http://www.securitytracker.com/id?1022513
-
https://www.redhat.com/archives/fedora-package-announce/2009-July/msg00750.html
-
http://www.vupen.com/english/advisories/2009/1825
-
http://www.vupen.com/english/advisories/2009/1813
-
http://mail.zope.org/pipermail/zope-dev/2009-July/037195.html
-
http://packetstormsecurity.com/files/163271/Adobe-ColdFusion-8-Remote-Command-Execution.html
- http://www.securityfocus.com/archive/1/504721/100/0/threaded
-
http://www.debian.org/security/2009/dsa-1836
- http://www.ocert.org/advisories/ocert-2009-007.html
-
http://sourceforge.net/project/shownotes.php?release_id=695430
Products affected by CVE-2009-2265
- cpe:2.3:a:fckeditor:fckeditor:*:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.0_rc2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.0_fc:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.0rc2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.0rc3:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.5.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.3:beta:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6.3:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6.2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6.3:beta:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.5:beta:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6.4:beta:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:fckeditor:fckeditor:2.3:*:*:*:*:*:*:*