CVE-2006-3015

Exploit

EPSS 9%
Veröffentlicht 14.06.2006 15:06:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
CVE-Watchlists
Login
Unerledigt
Login

Argument injection vulnerability in WinSCP 3.8.1 build 328 allows remote attackers to upload or download arbitrary files via encoded spaces and double-quote characters in a scp or sftp URI.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

WinSCP ≫ WinSCP Version3.8.1

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	9%	0.918

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.1	4.9	9.2	AV:N/AC:H/Au:N/C:C/I:C/A:N

CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0196.html

Broken Link

http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/046810.html

Exploit

Broken Link

http://secunia.com/advisories/20575

Vendor Advisory

Broken Link

http://winscp.net/eng/docs/history#3.8.2

Release Notes

http://www.kb.cert.org/vuls/id/912588

Third Party Advisory