CVE-2006-3015

Exploit

EPSS 9%
Published 14.06.2006 15:06:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI.

Affected products Warnungen 0 Metrics 2 CWE 1 References 11

Data is provided by the National Vulnerability Database (NVD)

WinSCP ≫ WinSCP Version3.8.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	9%	0.918

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.1	4.9	9.2	AV:N/AC:H/Au:N/C:C/I:C/A:N

CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0196.html

Broken Link

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046810.html

Exploit

Broken Link

http://secunia.com/advisories/20575

Vendor Advisory

Broken Link

http://winscp.net/eng/docs/history#3.8.2

Release Notes

http://www.kb.cert.org/vuls/id/912588

Third Party Advisory