#VU44252 Path traversal in dolibarr - CVE-2012-1226

Cybersecurity Help s.r.o.

Published: 2012-02-21 | Updated: 2020-08-11

Vulnerability identifier: #VU44252

Vulnerability risk: Medium

CVSSv4.0: 5.5 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P/U:Green]

CVE-ID: CVE-2012-1226

CWE-ID: CWE-22

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
dolibarr
Web applications / CRM systems

Vendor: Dolibarr ERP & CRM

Description

The vulnerability allows a remote non-authenticated attacker to read and manipulate data.

Multiple directory traversal vulnerabilities in Dolibarr CMS 3.2.0 Alpha allow remote attackers to read arbitrary files and possibly execute arbitrary code via a .. (dot dot) in the (1) file parameter to document.php or (2) backtopage parameter in a create action to comm/action/fiche.php.

Mitigation
Install update from vendor's website.

Vulnerable software versions

dolibarr: 3.2.0

External links
https://archives.neohapsis.com/archives/bugtraq/2012-02/0168.html
https://www.exploit-db.com/exploits/18480
https://www.securityfocus.com/archive/1/521583
https://www.vulnerability-lab.com/get_content.php?id=428
https://exchange.xforce.ibmcloud.com/vulnerabilities/73136
https://github.com/Dolibarr/dolibarr/commit/5381986e50dd6055f2b3b63281eaacffa0449da2
https://github.com/Dolibarr/dolibarr/commit/8f9b9987ffb42cfbe907fe31ded3001bfc1b3417

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

Latest bulletins with this vulnerability

Path traversal in dolibarr