CVE-2015-2166
published 2015-04-06CVE-2015-2166: Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read…
PriorityP345medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
26.23%
97.7th percentile
Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ericsson | drutt_mobile_service_delivery_platform | — | — |
| ericsson | drutt_mobile_service_delivery_platform | — | — |
| ericsson | drutt_mobile_service_delivery_platform | — | — |
Detection & IOCsextracted from sources · hover to see the quote
url/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2fopt/drutt/msdp/manager/conf/props/msdp-users.properties↗
url/..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f..%2f/opt/drutt/msdp/manager/conf/ccContext.properties↗
- →Detect directory traversal attempts against Ericsson Drutt MSDP Instance Monitor by looking for '..%2f' sequences in HTTP GET request URIs — the encoded slash bypasses naive path sanitization. ↗
- →Alert on unauthenticated HTTP GET requests containing 12 or more consecutive '..%2f' traversal segments targeting the Instance Monitor component. ↗
- →Flag HTTP responses with status 200 whose body matches 'root:.*:0:0:' as a successful LFI exploitation indicator for /etc/passwd exfiltration. ↗
- →Monitor for access attempts to sensitive MSDP-specific credential and configuration files: msdp-users.properties and ccContext.properties via traversal paths. ↗
- ·The traversal is exploitable without authentication ('unauthenticated remote attacker'), so no credential-based filtering can be used to reduce false positives in detection rules. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal
exploitdb·2015-04-02·CVSS 5.0
CVE-2015-2166 [MEDIUM] Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal
Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal
---
+------------------------------------------------------------------------------------------------------+
+ Ericsson Drutt MSDP (Instance Monitor) - Directory Traversal Vulnerability and Arbitrary File Access +
+------------------------------------------------------------------------------------------------------+
Affected Product: Ericsson Drutt MSDP (Instance Monitor)
Vendor Homepage : www.ericsson.com
Version : 4, 5 and 6
CVE v2 Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N
CVE : CVE-2015-2166
Discovered by : Anastasios Monachos (secuid0) - [anastasiosm (at) gmail (dot) com]
Patched : Yes
+-------------+
+ Description +
+-------------+
Ericsson Drutt Mobile Service Delivery Platform (MSDP) is a complete business support system pro
Nuclei
Ericsson Drutt MSDP - Local File Inclusion
nuclei·CVSS 5.0
CVE-2015-2166 [MEDIUM] Ericsson Drutt MSDP - Local File Inclusion
Ericsson Drutt MSDP - Local File Inclusion
Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI in the Instance Monitor.
Template:
id: CVE-2015-2166
info:
name: Ericsson Drutt MSDP - Local File Inclusion
author: daffainfo
severity: medium
description: Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI in the Instance Monitor.
impact: |
Successful exploitation of this vulnerability could allow an attacker to read sensitive files on the server, potentially leading to unauthorized access or information disclosure.
remediation: |
Apply the latest security pa
No writeups or analysis indexed.
http://packetstormsecurity.com/files/131233/Ericsson-Drutt-MSDP-Instance-Monitor-Directory-Traversal-File-Access.htmlhttp://www.securityfocus.com/bid/73901https://www.exploit-db.com/exploits/36619/http://packetstormsecurity.com/files/131233/Ericsson-Drutt-MSDP-Instance-Monitor-Directory-Traversal-File-Access.htmlhttp://www.securityfocus.com/bid/73901https://www.exploit-db.com/exploits/36619/
2015-04-06
Published