#VU43216 Path traversal in MoinMoin - CVE-2012-6080

Cybersecurity Help s.r.o.

Published: 2013-01-03 | Updated: 2020-08-11

Vulnerability identifier: #VU43216

Vulnerability risk: Medium

CVSSv4.0: 2.7 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2012-6080

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
MoinMoin
Web applications / CMS

Vendor: MoinMoin

Description

The vulnerability allows a remote attacker to perform directory traversal attacks.

The vulnerability exists due to input validation error when processing directory traversal sequences in the _do_attachment_move function in the AttachFile action (action/AttachFile.py) in MoinMoin 1.9.3 through 1.9.5. A remote authenticated attacker can send a specially crafted HTTP request and remote attackers to overwrite arbitrary files via a . (dot dot) in a file name.

Mitigation
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.

Vulnerable software versions

MoinMoin: 1.9.3 - 1.9.5

External links
https://hg.moinmo.in/moin/1.9/rev/3c27131a3c52
https://moinmo.in/SecurityFixes
https://secunia.com/advisories/51663
https://secunia.com/advisories/51676
https://secunia.com/advisories/51696
https://ubuntu.com/usn/usn-1680-1
https://www.debian.org/security/2012/dsa-2593
https://www.openwall.com/lists/oss-security/2012/12/30/6
https://www.securityfocus.com/bid/57076
https://bugs.launchpad.net/ubuntu/+source/moin/+bug/1094599

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for MoinMoin

Multiple vulnerabilities in MoinMoin