Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2018-1000544

Опубликовано: 05 июн. 2018
Источник: redhat
CVSS3: 4.8

Описание

rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via If a site allows uploading of .zip files , an attacker can upload a malicious file that contains symlinks or files with absolute pathnames "../" to write arbitrary files to the filesystem..

A directory and symbolic link traversal flaw was found in the way rubyzip gem extracts zip files. An attacker, with access to a privileged application capable of extracting zip files, could use this flaw to write new files to arbitrary paths, accessible by the aforementioned privileged application.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Quickstart Cloud Installer 1tfm-rubygem-rubyzipWill not fix
CloudForms Management Engine 5.9ansible-towerFixedRHSA-2018:346605.11.2018
CloudForms Management Engine 5.9cfmeFixedRHSA-2018:346605.11.2018
CloudForms Management Engine 5.9cfme-amazon-smartstateFixedRHSA-2018:346605.11.2018
CloudForms Management Engine 5.9cfme-applianceFixedRHSA-2018:346605.11.2018
CloudForms Management Engine 5.9cfme-gemsetFixedRHSA-2018:346605.11.2018

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-20->CWE-22
Дефект:
CWE-59
https://bugzilla.redhat.com/show_bug.cgi?id=1593001rubyzip: arbitrary file write vulnerability / arbitrary code execution using a specially crafted zip file

4.8 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2018-1000544

CVSS3: 9.8
ubuntu
больше 7 лет назад

rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via If a site allows uploading of .zip files , an attacker can upload a malicious file that contains symlinks or files with absolute pathnames "../" to write arbitrary files to the filesystem..

nvd логотип

CVE-2018-1000544

CVSS3: 9.8
nvd
больше 7 лет назад

rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Traversal vulnerability in Zip::File component that can result in write arbitrary files to the filesystem. This attack appear to be exploitable via If a site allows uploading of .zip files , an attacker can upload a malicious file that contains symlinks or files with absolute pathnames "../" to write arbitrary files to the filesystem..

debian логотип

CVE-2018-1000544

CVSS3: 9.8
debian
больше 7 лет назад

rubyzip gem rubyzip version 1.2.1 and earlier contains a Directory Tra ...

github логотип

GHSA-vqcq-mrmw-mcmg

CVSS3: 9.8
github
больше 7 лет назад

Rubyzip gem contains a Directory Traversal vulnerability in zip file component

4.8 Medium

CVSS3