CVE-2011-2524
published 2011-08-31CVE-2011-2524: Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
1.93%
77.5th percentile
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Affected
75 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | libsoup2.4 | < libsoup2.4 2.34.3-1 (bookworm) | libsoup2.4 2.34.3-1 (bookworm) |
| gnome | libsoup | <= 2.35.3 | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
| gnome | libsoup | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv5.0MEDIUM
vendor_debian5.0MEDIUM
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-xm6g-x36q-hxpx: Directory traversal vulnerability in soup-uri
ghsa_unreviewed·2022-05-17
CVE-2011-2524 [MEDIUM] CWE-22 GHSA-xm6g-x36q-hxpx: Directory traversal vulnerability in soup-uri
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
OSV
CVE-2011-2524: Directory traversal vulnerability in soup-uri
osv·2011-08-31·CVSS 5.0
CVE-2011-2524 [MEDIUM] CVE-2011-2524: Directory traversal vulnerability in soup-uri
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Red Hat
libsoup: SoupServer directory traversal flaw
vendor_redhat·2011-07-28·CVSS 5.0
CVE-2011-2524 [MEDIUM] libsoup: SoupServer directory traversal flaw
libsoup: SoupServer directory traversal flaw
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Package: libsoup (Red Hat Enterprise Linux 4) - Not affected
Package: libsoup (Red Hat Enterprise Linux 5) - Not affected
Ubuntu
libsoup vulnerability
vendor_ubuntu·2011-07-28
CVE-2011-2524 libsoup vulnerability
Title: libsoup vulnerability
Summary: An attacker could send crafted URLs to a SoupServer application and obtain
unintended access to files.
It was discovered that libsoup did not properly validate its input when
processing SoupServer requests. A remote attacker could exploit this to
access files via directory traversal.
Instructions: After a standard system update you need to restart any applications that
use libsoup to make all the necessary changes.
Debian
CVE-2011-2524: libsoup2.4 - Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before ...
vendor_debian·2011·CVSS 5.0
CVE-2011-2524 [MEDIUM] CVE-2011-2524: libsoup2.4 - Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before ...
Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Scope: local
bookworm: resolved (fixed in 2.34.3-1)
bullseye: resolved (fixed in 2.34.3-1)
trixie: resolved (fixed in 2.34.3-1)
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2011-2524 libsoup: SoupServer directory traversal flaw [fedora-all]
bugzilla·2011-07-28·CVSS 5.0
CVE-2011-2524 [MEDIUM] CVE-2011-2524 libsoup: SoupServer directory traversal flaw [fedora-all]
CVE-2011-2524 libsoup: SoupServer directory traversal flaw [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=720509
Please note: this issue affects multiple su
Bugzilla
CVE-2011-2524 libsoup: SoupServer directory traversal flaw
bugzilla·2011-07-11·CVSS 5.0
CVE-2011-2524 [MEDIUM] CVE-2011-2524 libsoup: SoupServer directory traversal flaw
CVE-2011-2524 libsoup: SoupServer directory traversal flaw
It was reported [1] that SoupServer from libsoup did not properly parse '..' in URLs passed to it. This could allow for some services that use SoupServer to expose unintended files (such as http://localhost/..%2f..%2f..%2fetc/passwd) when it is used to export part of the local filesystem.
This can affect certain applications such as rygel (UPnP/DLNA services), meiga (tool to share selected local directories via the web), libgda (library for writing GNOME database programs), and others that use libsoup's SoupServer functionality in this way.
[1] https://bugzilla.gnome.org/show_bug.cgi?id=653258
Discussion:
The faulty code was introduced in libsoup 2.4, so versions prior to that are not vulnerable to this flaw; Red Hat Enterpris
http://git.gnome.org/browse/libsoup/tree/NEWShttp://lists.fedoraproject.org/pipermail/package-announce/2011-August/063431.htmlhttp://secunia.com/advisories/47299http://www.debian.org/security/2011/dsa-2369http://www.redhat.com/support/errata/RHSA-2011-1102.htmlhttp://www.securitytracker.com/id?1025864http://www.ubuntu.com/usn/USN-1181-1https://bugzilla.gnome.org/show_bug.cgi?id=653258http://git.gnome.org/browse/libsoup/tree/NEWShttp://lists.fedoraproject.org/pipermail/package-announce/2011-August/063431.htmlhttp://secunia.com/advisories/47299http://www.debian.org/security/2011/dsa-2369http://www.redhat.com/support/errata/RHSA-2011-1102.htmlhttp://www.securitytracker.com/id?1025864http://www.ubuntu.com/usn/USN-1181-1https://bugzilla.gnome.org/show_bug.cgi?id=653258
2011-08-31
Published