CVE-2016-5725 — MEDIUM (5.9)

Q: How severe is CVE-2016-5725?

CVE-2016-5725 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-5725?

Check the references section above for vendor advisories and patch information. Affected products include: Jcraft Jsch, Microsoft Windows.

Vulnerability Description

Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) in a response to a recursive GET command.

CVSS Score

5.9

MEDIUM

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

NONE

Affected Products

Vendor	Product	Versions
Jcraft	Jsch	<= 0.1.53
Microsoft	Windows	All versions

Related Weaknesses (CWE)

CWE-22

References

http://packetstormsecurity.com/files/138809/jsch-0.1.53-Path-Traversal.htmlThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2016/Sep/53Mailing ListThird Party Advisory
http://www.jcraft.com/jsch/ChangeLogRelease Notes
http://www.securityfocus.com/bid/93100Third Party AdvisoryVDB Entry
https://access.redhat.com/errata/RHSA-2017:3115
https://github.com/tintinweb/pub/tree/master/pocs/cve-2016-5725Third Party Advisory
https://lists.debian.org/debian-lts-announce/2020/04/msg00017.html
https://www.exploit-db.com/exploits/40411/Third Party AdvisoryVDB Entry
https://www.oracle.com/security-alerts/cpuApr2021.html
https://www.oracle.com/security-alerts/cpujan2021.html
https://www.oracle.com/security-alerts/cpuoct2020.html
http://packetstormsecurity.com/files/138809/jsch-0.1.53-Path-Traversal.htmlThird Party AdvisoryVDB Entry
http://seclists.org/fulldisclosure/2016/Sep/53Mailing ListThird Party Advisory
http://www.jcraft.com/jsch/ChangeLogRelease Notes
http://www.securityfocus.com/bid/93100Third Party AdvisoryVDB Entry

FAQ

What is CVE-2016-5725?

CVE-2016-5725 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) ...

How severe is CVE-2016-5725?

CVE-2016-5725 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-5725?

Check the references section above for vendor advisories and patch information. Affected products include: Jcraft Jsch, Microsoft Windows.