Vulnerability Description
Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X) before 0.7.63, and 0.8.x before 0.8.17, allows remote authenticated users to create or overwrite arbitrary files via a .. (dot dot) in the Destination HTTP header for the WebDAV (1) COPY or (2) MOVE method.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| F5 | Nginx | <= 0.7.62 |
| Nginx | Nginx | 0.6.1516 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/fulldisclosure/2009-09/0379.htmlExploit
- http://marc.info/?l=oss-security&m=125897327321676&w=2Patch
- http://marc.info/?l=oss-security&m=125897425223039&w=2Patch
- http://marc.info/?l=oss-security&m=125900327409842&w=2Patch
- http://secunia.com/advisories/36818Vendor Advisory
- http://secunia.com/advisories/48577
- http://security.gentoo.org/glsa/glsa-201203-22.xml
- http://www.openwall.com/lists/oss-security/2009/11/20/1Patch
- http://www.openwall.com/lists/oss-security/2009/11/23/10Patch
- http://archives.neohapsis.com/archives/fulldisclosure/2009-09/0379.htmlExploit
- http://marc.info/?l=oss-security&m=125897327321676&w=2Patch
- http://marc.info/?l=oss-security&m=125897425223039&w=2Patch
- http://marc.info/?l=oss-security&m=125900327409842&w=2Patch
- http://secunia.com/advisories/36818Vendor Advisory
- http://secunia.com/advisories/48577
FAQ
What is CVE-2009-3898?
CVE-2009-3898 is a vulnerability with a CVSS score of 4.9 (MEDIUM). Directory traversal vulnerability in src/http/modules/ngx_http_dav_module.c in nginx (aka Engine X) before 0.7.63, and 0.8.x before 0.8.17, allows remote authenticated users to create or overwrite arb...
How severe is CVE-2009-3898?
CVE-2009-3898 has been rated MEDIUM with a CVSS base score of 4.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-3898?
Check the references section above for vendor advisories and patch information. Affected products include: F5 Nginx, Nginx Nginx.