#VU43218 Path traversal in MoinMoin - CVE-2012-6495

Cybersecurity Help s.r.o.

Published: 2013-01-03 | Updated: 2020-08-11

Vulnerability identifier: #VU43218

Vulnerability risk: Low

CVSSv4.0: 1.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2012-6495

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
MoinMoin
Web applications / CMS

Vendor: MoinMoin

Description

The vulnerability allows a remote #AU# to read and manipulate data.

Multiple directory traversal vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anywikidraw (action/anywikidraw.py) actions in MoinMoin before 1.9.6 allow remote authenticated users with write permissions to overwrite arbitrary files via unspecified vectors. NOTE: this can be leveraged with CVE-2012-6081 to execute arbitrary code.

Mitigation
Install update from vendor's website.

Vulnerable software versions

MoinMoin: 0.1 - 1.9.4

External links
https://hg.moinmo.in/moin/1.9/rev/7e7e1cbb9d3f
https://moinmo.in/MoinMoinRelease1.9
https://moinmo.in/SecurityFixes
https://secunia.com/advisories/51696
https://ubuntu.com/usn/usn-1680-1
https://www.debian.org/security/2012/dsa-2593
https://www.openwall.com/lists/oss-security/2012/12/29/6
https://www.openwall.com/lists/oss-security/2012/12/30/4
https://bugs.launchpad.net/ubuntu/+source/moin/+bug/1094599

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated privileged user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for MoinMoin

Path traversal in MoinMoin