CWE-49 路径等价:'filename/'(尾部斜杠)

admin
admin
admin
139009
文章
114
评论
2021年12月16日16:45:37评论108 views字数 1776阅读5分55秒阅读模式

CWE-49 路径等价:'filename/'(尾部斜杠)

Path Equivalence: 'filename/' (Trailing Slash)

结构: Simple

Abstraction: Variant

状态: Incomplete

被利用可能性: unkown

基本描述

A software system that accepts path input in the form of trailing slash ('filedir/') without appropriate validation can lead to ambiguous path resolution and allow an attacker to traverse the file system to unintended locations or access arbitrary files.

相关缺陷

  • cwe_Nature: ChildOf cwe_CWE_ID: 41 cwe_View_ID: 1000 cwe_Ordinal: Primary

  • cwe_Nature: ChildOf cwe_CWE_ID: 41 cwe_View_ID: 699 cwe_Ordinal: Primary

  • cwe_Nature: ChildOf cwe_CWE_ID: 162 cwe_View_ID: 1000

适用平台

Language: {'cwe_Class': 'Language-Independent', 'cwe_Prevalence': 'Undetermined'}

常见的影响

范围 影响 注释
['Confidentiality', 'Integrity'] ['Read Files or Directories', 'Modify Files or Directories']

分析过的案例

标识 说明 链接
CVE-2002-0253 Overlaps infoleak https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2002-0253
CVE-2001-0446 Application server allows remote attackers to read source code for .jsp files by appending a / to the requested URL. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0446
CVE-2004-0334 Bypass Basic Authentication for files using trailing "/" https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0334
CVE-2001-0893 Read sensitive files with trailing "/" https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0893
CVE-2001-0892 Web server allows remote attackers to view sensitive files under the document root (such as .htpasswd) via a GET request with a trailing /. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0892
CVE-2004-1814 Directory traversal vulnerability in server allows remote attackers to read protected files via .. (dot dot) sequences in an HTTP request. https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1814
BID:3518 Source code disclosure http://www.securityfocus.com/bid/3518

分类映射

映射的分类名 ImNode ID Fit Mapped Node Name
PLOVER filedir/ (trailing slash, trailing /)
Software Fault Patterns SFP16 Path Traversal

文章来源于互联网:scap中文网

免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉。
  • 左青龙
  • 微信扫一扫
  • weinxin
  • 右白虎
  • 微信扫一扫
  • weinxin
admin
  • 本文由 发表于 2021年12月16日16:45:37
  • 转载请保留本文链接(CN-SEC中文网:感谢原作者辛苦付出):
                   CWE-49 路径等价:'filename/'(尾部斜杠)https://cn-sec.com/archives/612985.html
                  免责声明:文章中涉及的程序(方法)可能带有攻击性,仅供安全研究与教学之用,读者将其信息做其他用途,由读者承担全部法律及连带责任,本站不承担任何法律及连带责任;如有问题可邮件联系(建议使用企业邮箱或有效邮箱,避免邮件被拦截,联系方式见首页),望知悉.

发表评论

匿名网友 填写信息