CVE-2008-6508
HIGH severity · CVSS 7.5 · Path traversal
7.5CVSS HIGH
Summary
Directory traversal vulnerability in the AuthCheck filter in the Admin Console in Openfire 3.6.0a and earlier allows remote attackers to bypass authentication and access the admin interface via a .. (dot dot) in a URI that matches the Exclude-Strings list, as demonstrated by a /setup/setup-/.. sequence in a URI.
Impact & exploitability
Attack vectorNetwork
Attack complexityLow
Privileges required—
User interaction—
Confidentiality impact—
Integrity impact—
Availability impact—
Exploit probability (EPSS)83%
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected products we track (1)
Recommendation
Apply the vendor fix promptly. Open any affected product above for its exact safe version.
Official patch: http://www.igniterealtime.org/builds/openfire/docs/latest/changelog.html ↗
Additional information
- NVD record
- http://www.igniterealtime.org/builds/openfire/docs/latest/changelog.htmlPatch
- http://www.igniterealtime.org/issues/browse/JM-1489Patch
- http://secunia.com/advisories/32478
- http://www.andreas-kurtz.de/archives/63
- http://www.securityfocus.com/archive/1/498162/100/0/threaded
- http://osvdb.org/49663Exploit
- http://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txtExploit
- http://www.securityfocus.com/bid/32189Exploit