CVE-2010-4349

CVSS V2 Medium 5 CVSS V3 None

Description

admin/upgrade_unattended.php in MantisBT before 1.2.4 allows remote attackers to obtain sensitive information via an invalid db_type parameter, which reveals the installation path in an error message, related to an unsafe call by MantisBT to a function in the ADOdb Library for PHP.

Overview

CVE ID
CVE-2010-4349

Assigner
secalert@redhat.com

Vulnerability Status
Modified

Published Version
2011-01-03T20:00:43

Last Modified Date
2017-08-17T01:33:10

Weakness Enumerations

CWE	URL
CWE-200	http://cwe.mitre.org/data/definitions/200.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version End
cpe:2.3:a:mantisbt:mantisbt::::::::	1	OR	1.2.3
cpe:2.3:a:mantisbt:mantisbt:0.18.0:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.0:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.0:rc1::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.0a1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.0a2:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.2:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.3:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.4:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:0.19.5:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc1::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc2::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc3::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc4::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0:rc5::::::	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0a1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0a2:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.0a3:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.2:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.3:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.4:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.5:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.6:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.7:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.0.8:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.0:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.2:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.4:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.5:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.6:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.7:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.1.8:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.2.0:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.2.1:::::::*	1	OR
cpe:2.3:a:mantisbt:mantisbt:1.2.2:::::::*	1	OR

CVSS Version 2

Version
2.0

Vector String
AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector
NETWORK

Access Compatibility
LOW

Authentication
NONE

Confidentiality Impact
PARTIAL

Integrity Impact
NONE

Availability Impact
NONE

Base Score
5

Severity
MEDIUM

Exploitability Score
10

Impact Score
2.9

References

Reference URL	Reference Tags
http://www.mantisbt.org/bugs/changelog_page.php?version_id=112
http://www.mantisbt.org/bugs/view.php?id=12607
https://bugzilla.redhat.com/show_bug.cgi?id=663230	Exploit Patch
http://openwall.com/lists/oss-security/2010/12/15/4	Exploit Patch
http://openwall.com/lists/oss-security/2010/12/16/1	Exploit Patch
http://www.zeroscience.mk/en/vulnerabilities/ZSL-2010-4983.php	Exploit Patch
http://secunia.com/advisories/42772
http://www.mantisbt.org/blog/?p=123
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052730.html
http://lists.fedoraproject.org/pipermail/package-announce/2010-December/052721.html
http://www.vupen.com/english/advisories/2011/0002
http://security.gentoo.org/glsa/glsa-201211-01.xml
http://secunia.com/advisories/51199
https://exchange.xforce.ibmcloud.com/vulnerabilities/64463

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2010-4349
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4349

History

Created	Old Value	New Value	Data Type	Notes
2022-05-10 08:56:07				Added to TrackCVE