Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4643

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2011-4643
Last Modified 06 Nov 2012 12:04:10
Published 03 Jan 2012 06:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2011-4643

Summary

Multiple directory traversal vulnerabilities in Splunk 4.x before 4.2.5 allow remote authenticated users to read arbitrary files via a .. (dot dot) in a URI to (1) Splunk Web or (2) the Splunkd HTTP Server, aka SPL-45243.

Vulnerable Systems

Application

  • Splunk 4.0

  • Splunk 4.0.1

  • Splunk 4.0.10

  • Splunk 4.0.11

  • Splunk 4.0.2

  • Splunk 4.0.3

  • Splunk 4.0.4

  • Splunk 4.0.5

  • Splunk 4.0.6

  • Splunk 4.0.7

  • Splunk 4.0.8

  • Splunk 4.0.9

  • Splunk 4.1

  • Splunk 4.1.1

  • Splunk 4.1.2

  • Splunk 4.1.3

  • Splunk 4.1.4

  • Splunk 4.1.5

  • Splunk 4.1.6

  • Splunk 4.1.7

  • Splunk 4.1.8

  • Splunk 4.2

  • Splunk 4.2.1

  • Splunk 4.2.2

  • Splunk 4.2.3

  • Splunk 4.2.4


References

CONFIRM - http://www.splunk.com/view/SP-CAAAGMM

MISC - http://www.sec-1.com/blog/wp-content/uploads/2011/12/Attacking_Splunk_Release.pdf

MISC - http://www.sec-1.com/blog/?p=233

EXPLOIT-DB - 18245

XF - splunk-splunkd-directory-traversal(72244)

SECTRACK - 1026451

SECUNIA - 47232


Last Updated: 27 May 2016 10:57:18