Published: 20/04/2010 Updated: 07/06/2010

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Multiple format string vulnerabilities in the tolog function in httpdx 1.4, 1.4.5, 1.4.6, 1.4.6b, and 1.5 allow (1) remote malicious users to execute arbitrary code via format string specifiers in a GET request to the HTTP server component when logging is enabled, and allow (2) remote authenticated users to execute arbitrary code via format string specifiers in a PWD command to the FTP server component.

Vulnerable Product	Search on Vulmon	Subscribe to Product
jasper httpdx 1.4.6b
jasper httpdx 1.4
jasper httpdx 1.4.5
jasper httpdx 1.4.6
jasper httpdx 1.5

## # $Id: httpdx_tolog_formatrb 10150 2010-08-25 20:55:37Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' c ...

CWE-134 http://www.metasploit.com/redmine/projects/framework/repository/revisions/7569/entry/modules/exploits/windows/ftp/httpdx_tolog_format.rb http://osvdb.org/60181 http://www.vupen.com/english/advisories/2009/3312 http://www.metasploit.com/redmine/projects/framework/repository/revisions/7569/entry/modules/exploits/windows/http/httpdx_tolog_format.rb http://osvdb.org/60182 https://nvd.nist.gov https://www.exploit-db.com/exploits/16794/

CVE-2009-4769

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect