CVE-2015-5353
published 2015-07-01CVE-2015-5353: Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab…
PriorityP353high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
7.14%
93.5th percentile
Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| msrc | cbl2_avahi_0.8-1_on_cbl_mariner_2.0 | — | — |
| msrc | cbl_mariner_2.0_arm | — | — |
| msrc | cbl_mariner_2.0_x64 | — | — |
| novius-os | novius_os | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_msrc9.1CRITICAL
vendor_cisco7.8HIGH
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9gwc-j42j-2hxx: Directory traversal vulnerability in Novius OS 5
ghsa_unreviewed·2022-05-14
CVE-2015-5353 [HIGH] CWE-22 GHSA-9gwc-j42j-2hxx: Directory traversal vulnerability in Novius OS 5
Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/.
Microsoft
avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link which allows remote attackers to cause a denial of service (traff
vendor_msrc·2017-05-09·CVSS 9.1
CVE-2017-6519 [MEDIUM] CWE-346 avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link which allows remote attackers to cause a denial of service (traff
avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link which allows remote attackers to cause a denial of service (traffic amplification) and may cause information leakage by obtaining potentially sensitive information from the responding device via port-5353 UDP packets. NOTE: this may overlap CVE-2015-2809.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to tr
Red Hat
avahi: Multicast DNS responds to unicast queries outside of local network
vendor_redhat·2015-03-31·CVSS 5.0
CVE-2017-6519 [MEDIUM] CWE-200 avahi: Multicast DNS responds to unicast queries outside of local network
avahi: Multicast DNS responds to unicast queries outside of local network
avahi-daemon in Avahi through 0.6.32 and 0.7 inadvertently responds to IPv6 unicast queries with source addresses that are not on-link, which allows remote attackers to cause a denial of service (traffic amplification) and may cause information leakage by obtaining potentially sensitive information from the responding device via port-5353 UDP packets. NOTE: this may overlap CVE-2015-2809.
A vulnerability was found in Avahi, where the avahi-daemon improperly handles responses to IPv6 unicast queries, a remote attacker could exploit this flaw by sending specially crafted port-5353 UDP packets, potentially causing a denial of service (traffic amplification) or leaking sensitive information.
Statement: This vulnerabil
Cisco
Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
vendor_cisco·2015-03-25·CVSS 7.8
CVE-2015-0650 [HIGH] CWE-20 Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
A vulnerability in the multicast DNS (mDNS) gateway function of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to reload the vulnerable device.
The vulnerability is due to improper validation of mDNS packets. An attacker could exploit this vulnerability by sending malformed IP version 4 (IPv4) or IP version 6 (IPv6) packets on UDP port 5353. An exploit could allow the attacker to cause a denial of service (DoS) condition.
Cisco has released software updates that address this vulnerability. This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-mdnswo
Note: The March 25
Cisco
Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
vendor_cisco
CVE-2015-0650 Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
CVE-2015-0650: Cisco IOS Software and IOS XE Software mDNS Gateway Denial of Service Vulnerability
A vulnerability in the multicast DNS (mDNS) gateway function of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to reload the vulnerable device. The vulnerability is due to improper validation of mDNS packets. An attacker could exploit this vulnerability by sending malformed IP version 4 (IPv4) or IP version 6 (IPv6) packets on UDP port 5353. An exploit could allow the attacker to cause a denial of service (DoS) condition. Cisco has released software updates that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-mdns wo Note:
No detection rules found.
No writeups or analysis indexed.
http://hyp3rlinx.altervista.org/advisories/AS-NOVIUSOS0629.txthttp://packetstormsecurity.com/files/132478/Novius-OS-5.0.1-elche-XSS-LFI-Open-Redirect.htmlhttp://www.securityfocus.com/archive/1/535876/100/0/threadedhttp://www.securityfocus.com/bid/75533https://www.exploit-db.com/exploits/37439/http://hyp3rlinx.altervista.org/advisories/AS-NOVIUSOS0629.txthttp://packetstormsecurity.com/files/132478/Novius-OS-5.0.1-elche-XSS-LFI-Open-Redirect.htmlhttp://www.securityfocus.com/archive/1/535876/100/0/threadedhttp://www.securityfocus.com/bid/75533https://www.exploit-db.com/exploits/37439/
2015-07-01
Published