Vulnerability Details : CVE-2012-4031
Public exploit exists!
Multiple directory traversal vulnerabilities in src/acloglogin.php in Wangkongbao CNS-1000 and 1100 allow remote attackers to read arbitrary files via a .. (dot dot) in the (1) lang or (2) langid cookie to port 85.
Vulnerability category: Directory traversal
Products affected by CVE-2012-4031
- cpe:2.3:h:wangkongbao:cns-1000:*:*:*:*:*:*:*:*
- cpe:2.3:h:wangkongbao:cns-1100:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-4031
18.15%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2012-4031
-
WANGKONGBAO CNS-1000 and 1100 UTM Directory Traversal
First seen: 2020-04-26auxiliary/scanner/http/wangkongbao_traversalThis module exploits the WANGKONGBAO CNS-1000 and 1100 UTM appliances aka Network Security Platform. This directory traversal vulnerability is interesting because the apache server is running as root, this means we can grab anything we want! For instance, the /etc/
CVSS scores for CVE-2012-4031
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
CWE ids for CVE-2012-4031
-
The product uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the product does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-4031
-
http://www.exploit-db.com/exploits/19526
WANGKONGBAO CNS-1000 UTM IPS-FW - Directory Traversal (Metasploit) - Hardware webapps ExploitExploit
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/76682
WANGKONGBAO CNS UTM IPS-FW acloglogin.php directory traversal CVE-2012-4031 Vulnerability Report
-
http://www.securityfocus.com/bid/54267
WANGKONGBAO CNS '/src/acloglogin.php' Directory Traversal VulnerabilitiesExploit
Jump to