CVE-2013-2182
published 2014-06-13CVE-2013-2182: The Mandril security plugin in Monkey HTTP Daemon (monkeyd) before 1.5.0 allows remote attackers to bypass access restrictions via a crafted URI, as…
PriorityP341medium5.8CVSS 2.0
AVNACMAuNCPIPAN
EXPLOIT
EPSS
5.59%
91.9th percentile
The Mandril security plugin in Monkey HTTP Daemon (monkeyd) before 1.5.0 allows remote attackers to bypass access restrictions via a crafted URI, as demonstrated by an encoded forward slash.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| monkey-project | monkey | <= 1.4.0 | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://bugs.monkey-project.com/ticket/186http://osvdb.org/94287http://secunia.com/advisories/53638http://www.openwall.com/lists/oss-security/2013/06/14/11http://www.securityfocus.com/bid/60569https://github.com/monkey/monkey/commit/15f72c1ee5e0afad20232bdf0fcecab8d62a5d89https://github.com/monkey/monkey/issues/92http://bugs.monkey-project.com/ticket/186http://osvdb.org/94287http://secunia.com/advisories/53638http://www.openwall.com/lists/oss-security/2013/06/14/11http://www.securityfocus.com/bid/60569https://github.com/monkey/monkey/commit/15f72c1ee5e0afad20232bdf0fcecab8d62a5d89https://github.com/monkey/monkey/issues/92
2014-06-13
Published