CVE-2011-3829 : ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote au

ftp_upload_file.php in Support Incident Tracker (aka SiT!) 3.65 allows remote authenticated users to obtain sensitive information via the file name, which reveals the installation path in an error message.

Published 2012-01-29 04:04:44

Updated 2025-04-11 00:51:22

Source Flexera Software LLC

View at NVD, CVE.org

Products affected by CVE-2011-3829

Sitracker » Support Incident Tracker » Version: 3.65
cpe:2.3:a:sitracker:support_incident_tracker:3.65:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2011-3829

EPSS FAQ

36.12%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2011-3829

Support Incident Tracker Remote Command Execution

Disclosure Date: 2011-11-10

First seen: 2020-04-26

exploit/multi/http/sit_file_upload

This module combines two separate issues within Support Incident Tracker (<= 3.65) application to upload arbitrary data and thus execute a shell. The two issues exist in ftp_upload_file.php. The first vulnerability exposes the upload dir used to store attachments.

More information

CVSS scores for CVE-2011-3829

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
4.0	MEDIUM	AV:N/AC:L/Au:S/C:P/I:N/A:N	8.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: Single Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None

CWE ids for CVE-2011-3829

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2011-3829

https://exchange.xforce.ibmcloud.com/vulnerabilities/71233

Support Incident Tracker ftp_upload_file.php path disclosure CVE-2011-3829 Vulnerability Report
http://packetstormsecurity.org/files/106933/sit_file_upload.rb.txt

Support Incident Tracker 3.65 Remote Command Execution ≈ Packet Storm
Exploit

CVEs referencing this url
http://www.exploit-db.com/exploits/18108

Support Incident Tracker 3.65 - Remote Command Execution (Metasploit) - PHP webapps Exploit
Exploit

CVEs referencing this url
http://secunia.com/secunia_research/2011-75/

Secunia Research Advisories | Flexera
Vendor Advisory
http://www.securityfocus.com/bid/50632

Support Incident Tracker (SiT!) Multiple Input Validation Vulnerabilities
Exploit

CVEs referencing this url
http://www.osvdb.org/76999

404 Not Found
http://secunia.com/advisories/45453

Sign in
Vendor Advisory

CVEs referencing this url

Jump to