CVE-2013-1904

CVSS V2 Medium 5 CVSS V3 None

Description

Absolute path traversal vulnerability in steps/mail/sendmail.inc in Roundcube Webmail before 0.7.3 and 0.8.x before 0.8.6 allows remote attackers to read arbitrary files via a full pathname in the _value parameter for the generic_message_footer setting in a save-perf action to index.php, as exploited in the wild in March 2013.

Overview

CVE ID
CVE-2013-1904

Assigner
secalert@redhat.com

Vulnerability Status
Analyzed

Published Version
2014-02-08T00:55:05

Last Modified Date
2014-02-10T15:44:06

Weakness Enumerations

CWE	URL
CWE-22	http://cwe.mitre.org/data/definitions/22.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version End
cpe:2.3:a:roundcube:webmail::::::::	1	OR	0.7.2
cpe:2.3:a:roundcube:webmail:0.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.1:20050811::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:20050820::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:20051007::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:20051021::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:alpha::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:beta::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:beta2::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:rc1::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:rc2::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1:stable::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.1.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.2:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.2:alpha::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.2:beta::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.2:stable::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.2.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.2.2:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.3:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.3:beta::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.3:rc1::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.3:stable::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.3.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.4:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.4:beta::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.4.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.4.2:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.5:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.5:beta::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.5:rc::::::	1	OR
cpe:2.3:a:roundcube:webmail:0.5.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.5.2:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.5.3:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.5.4:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.6:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.7:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.7.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.0:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.1:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.2:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.3:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.4:::::::*	1	OR
cpe:2.3:a:roundcube:webmail:0.8.5:::::::*	1	OR

CVSS Version 2

Version
2.0

Vector String
AV:N/AC:L/Au:N/C:P/I:N/A:N

Access Vector
NETWORK

Access Compatibility
LOW

Authentication
NONE

Confidentiality Impact
PARTIAL

Integrity Impact
NONE

Availability Impact
NONE

Base Score
5

Severity
MEDIUM

Exploitability Score
10

Impact Score
2.9

References

Reference URL	Reference Tags
http://www.openwall.com/lists/oss-security/2013/03/28/8
http://sourceforge.net/p/roundcubemail/news/2013/03/security-updates-086-and-073/	Patch
http://lists.roundcube.net/pipermail/dev/2013-March/022328.html	Vendor Advisory
http://habrahabr.ru/post/174423/
http://lists.opensuse.org/opensuse-updates/2013-04/msg00080.html

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2013-1904
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1904

History

Created	Old Value	New Value	Data Type	Notes
2022-05-10 10:38:12				Added to TrackCVE
2022-12-01 21:50:29	2014-02-08T00:55Z	2014-02-08T00:55:05	CVE Published Date	updated
2022-12-01 21:50:29		2014-02-10T15:44:06	CVE Modified Date	updated
2022-12-01 21:50:29		Analyzed	Vulnerability Status	updated