CVE-2013-4885

Exploit

EPSS 6.43%
Published 26.10.2013 17:55:03
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Nmap ≫ Nmap Version <= 6.25

Nmap ≫ Nmap Version2.1 Updatebeta1

Nmap ≫ Nmap Version2.2 Updatebeta2

Nmap ≫ Nmap Version2.2 Updatebeta3

Nmap ≫ Nmap Version2.2 Updatebeta4

Nmap ≫ Nmap Version2.3 Updatebeta10

Nmap ≫ Nmap Version2.3 Updatebeta12

Nmap ≫ Nmap Version2.3 Updatebeta13

Nmap ≫ Nmap Version2.3 Updatebeta14

Nmap ≫ Nmap Version2.3 Updatebeta17

Nmap ≫ Nmap Version2.3 Updatebeta18

Nmap ≫ Nmap Version2.3 Updatebeta19

Nmap ≫ Nmap Version2.3 Updatebeta20

Nmap ≫ Nmap Version2.3 Updatebeta21

Nmap ≫ Nmap Version2.3 Updatebeta4

Nmap ≫ Nmap Version2.3 Updatebeta5

Nmap ≫ Nmap Version2.3 Updatebeta6

Nmap ≫ Nmap Version2.3 Updatebeta8

Nmap ≫ Nmap Version2.3 Updatebeta9

Nmap ≫ Nmap Version2.05

Nmap ≫ Nmap Version2.06

Nmap ≫ Nmap Version2.07

Nmap ≫ Nmap Version2.08

Nmap ≫ Nmap Version2.09

Nmap ≫ Nmap Version2.10

Nmap ≫ Nmap Version2.11

Nmap ≫ Nmap Version2.12

Nmap ≫ Nmap Version2.50

Nmap ≫ Nmap Version2.51

Nmap ≫ Nmap Version2.52

Nmap ≫ Nmap Version2.53

Nmap ≫ Nmap Version2.54 Updatebeta1

Nmap ≫ Nmap Version2.54 Updatebeta16

Nmap ≫ Nmap Version2.54 Updatebeta19

Nmap ≫ Nmap Version2.54 Updatebeta2

Nmap ≫ Nmap Version2.54 Updatebeta20

Nmap ≫ Nmap Version2.54 Updatebeta21

Nmap ≫ Nmap Version2.54 Updatebeta22

Nmap ≫ Nmap Version2.54 Updatebeta24

Nmap ≫ Nmap Version2.54 Updatebeta25

Nmap ≫ Nmap Version2.54 Updatebeta26

Nmap ≫ Nmap Version2.54 Updatebeta27

Nmap ≫ Nmap Version2.54 Updatebeta28

Nmap ≫ Nmap Version2.54 Updatebeta29

Nmap ≫ Nmap Version2.54 Updatebeta3

Nmap ≫ Nmap Version2.54 Updatebeta30

Nmap ≫ Nmap Version2.54 Updatebeta31

Nmap ≫ Nmap Version2.54 Updatebeta32

Nmap ≫ Nmap Version2.54 Updatebeta33

Nmap ≫ Nmap Version2.54 Updatebeta34

Nmap ≫ Nmap Version2.54 Updatebeta35

Nmap ≫ Nmap Version2.54 Updatebeta36

Nmap ≫ Nmap Version2.54 Updatebeta37

Nmap ≫ Nmap Version2.54 Updatebeta4

Nmap ≫ Nmap Version2.54 Updatebeta5

Nmap ≫ Nmap Version2.54 Updatebeta6

Nmap ≫ Nmap Version2.54 Updatebeta7

Nmap ≫ Nmap Version2.99 Updaterc1

Nmap ≫ Nmap Version2.99 Updaterc2

Nmap ≫ Nmap Version3.00

Nmap ≫ Nmap Version3.10 Updatealpha1

Nmap ≫ Nmap Version3.10 Updatealpha2

Nmap ≫ Nmap Version3.10 Updatealpha3

Nmap ≫ Nmap Version3.10 Updatealpha4

Nmap ≫ Nmap Version3.10 Updatealpha5

Nmap ≫ Nmap Version3.10 Updatealpha7

Nmap ≫ Nmap Version3.10 Updatealpha9

Nmap ≫ Nmap Version3.15 Updatebeta1

Nmap ≫ Nmap Version3.15 Updatebeta2

Nmap ≫ Nmap Version3.15 Updatebeta3

Nmap ≫ Nmap Version3.20

Nmap ≫ Nmap Version3.25

Nmap ≫ Nmap Version3.26

Nmap ≫ Nmap Version3.27

Nmap ≫ Nmap Version3.28

Nmap ≫ Nmap Version3.30

Nmap ≫ Nmap Version3.40 Updatepvt1

Nmap ≫ Nmap Version3.40 Updatepvt10

Nmap ≫ Nmap Version3.40 Updatepvt11

Nmap ≫ Nmap Version3.40 Updatepvt12

Nmap ≫ Nmap Version3.40 Updatepvt13

Nmap ≫ Nmap Version3.40 Updatepvt14

Nmap ≫ Nmap Version3.40 Updatepvt15

Nmap ≫ Nmap Version3.40 Updatepvt16

Nmap ≫ Nmap Version3.40 Updatepvt17

Nmap ≫ Nmap Version3.40 Updatepvt2

Nmap ≫ Nmap Version3.40 Updatepvt3

Nmap ≫ Nmap Version3.40 Updatepvt4

Nmap ≫ Nmap Version3.40 Updatepvt6

Nmap ≫ Nmap Version3.40 Updatepvt7

Nmap ≫ Nmap Version3.40 Updatepvt8

Nmap ≫ Nmap Version3.40 Updatepvt9

Nmap ≫ Nmap Version3.45

Nmap ≫ Nmap Version3.48

Nmap ≫ Nmap Version3.50

Nmap ≫ Nmap Version3.55

Nmap ≫ Nmap Version3.70

Nmap ≫ Nmap Version3.75

Nmap ≫ Nmap Version3.81

Nmap ≫ Nmap Version3.90

Nmap ≫ Nmap Version3.91

Nmap ≫ Nmap Version3.93

Nmap ≫ Nmap Version3.94 Updatealpha1

Nmap ≫ Nmap Version3.94 Updatealpha2

Nmap ≫ Nmap Version3.94 Updatealpha3

Nmap ≫ Nmap Version3.95

Nmap ≫ Nmap Version3.96 Updatebeta1

Nmap ≫ Nmap Version3.98 Updatebeta1

Nmap ≫ Nmap Version3.99

Nmap ≫ Nmap Version3.999

Nmap ≫ Nmap Version3.9999

Nmap ≫ Nmap Version4.00

Nmap ≫ Nmap Version4.01

Nmap ≫ Nmap Version4.02 Updatealpha1

Nmap ≫ Nmap Version4.02 Updatealpha2

Nmap ≫ Nmap Version4.03

Nmap ≫ Nmap Version4.04 Updatebeta1

Nmap ≫ Nmap Version4.10

Nmap ≫ Nmap Version4.11

Nmap ≫ Nmap Version4.20

Nmap ≫ Nmap Version4.20 Updatealpha1

Nmap ≫ Nmap Version4.20 Updatealpha10

Nmap ≫ Nmap Version4.20 Updatealpha11

Nmap ≫ Nmap Version4.20 Updatealpha2

Nmap ≫ Nmap Version4.20 Updatealpha3

Nmap ≫ Nmap Version4.20 Updatealpha4

Nmap ≫ Nmap Version4.20 Updatealpha5

Nmap ≫ Nmap Version4.20 Updatealpha6

Nmap ≫ Nmap Version4.20 Updatealpha7

Nmap ≫ Nmap Version4.20 Updatealpha8

Nmap ≫ Nmap Version4.20 Updatealpha9

Nmap ≫ Nmap Version4.20 Updaterc1

Nmap ≫ Nmap Version4.20 Updaterc2

Nmap ≫ Nmap Version4.21 Updatealpha1

Nmap ≫ Nmap Version4.21 Updatealpha2

Nmap ≫ Nmap Version4.21 Updatealpha3

Nmap ≫ Nmap Version4.21 Updatealpha4

Nmap ≫ Nmap Version4.22 Updatesoc1

Nmap ≫ Nmap Version4.22 Updatesoc2

Nmap ≫ Nmap Version4.22 Updatesoc3

Nmap ≫ Nmap Version4.22 Updatesoc5

Nmap ≫ Nmap Version4.22 Updatesoc6

Nmap ≫ Nmap Version4.22 Updatesoc7

Nmap ≫ Nmap Version4.22 Updatesoc8

Nmap ≫ Nmap Version4.49 Updaterc1

Nmap ≫ Nmap Version4.49 Updaterc2

Nmap ≫ Nmap Version4.49 Updaterc3

Nmap ≫ Nmap Version4.49 Updaterc4

Nmap ≫ Nmap Version4.49 Updaterc5

Nmap ≫ Nmap Version4.49 Updaterc6

Nmap ≫ Nmap Version4.49 Updaterc7

Nmap ≫ Nmap Version4.50

Nmap ≫ Nmap Version4.51 Updatebeta

Nmap ≫ Nmap Version4.52

Nmap ≫ Nmap Version4.53

Nmap ≫ Nmap Version4.60

Nmap ≫ Nmap Version4.62

Nmap ≫ Nmap Version4.65

Nmap ≫ Nmap Version4.68

Nmap ≫ Nmap Version4.75

Nmap ≫ Nmap Version4.76

Nmap ≫ Nmap Version4.85 Updatebeta1

Nmap ≫ Nmap Version4.85 Updatebeta10

Nmap ≫ Nmap Version4.85 Updatebeta2

Nmap ≫ Nmap Version4.85 Updatebeta3

Nmap ≫ Nmap Version4.85 Updatebeta4

Nmap ≫ Nmap Version4.85 Updatebeta5

Nmap ≫ Nmap Version4.85 Updatebeta6

Nmap ≫ Nmap Version4.85 Updatebeta7

Nmap ≫ Nmap Version4.85 Updatebeta8

Nmap ≫ Nmap Version4.85 Updatebeta9

Nmap ≫ Nmap Version4.90 Updaterc1

Nmap ≫ Nmap Version5.00

Nmap ≫ Nmap Version5.10 Updatebeta1

Nmap ≫ Nmap Version5.10 Updatebeta2

Nmap ≫ Nmap Version5.20

Nmap ≫ Nmap Version5.21

Nmap ≫ Nmap Version5.30 Updatebeta1

Nmap ≫ Nmap Version5.35 Updatedc1

Nmap ≫ Nmap Version5.50

Nmap ≫ Nmap Version5.51

Nmap ≫ Nmap Version5.59 Updatebeta1

Nmap ≫ Nmap Version5.61 Updatetest1

Nmap ≫ Nmap Version5.61 Updatetest2

Nmap ≫ Nmap Version5.61 Updatetest4

Nmap ≫ Nmap Version5.61 Updatetest5

Nmap ≫ Nmap Version6.00

Nmap ≫ Nmap Version6.01

Nmap ≫ Nmap Version6.20 Updatebeta1

Opensuse ≫ Opensuse Version12.3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	6.43%	0.906

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://lists.opensuse.org/opensuse-updates/2013-10/msg00030.html

Vendor Advisory

http://lists.opensuse.org/opensuse-updates/2013-10/msg00035.html

http://nmap.org/changelog.html

http://packetstormsecurity.com/files/122719/TWSL2013-025.txt

Exploit

https://github.com/drk1wi/portspoof/commit/1791fe4e2b9e5b5c8e000551ab60a64a29d924c3

Patch

Exploit

https://www.trustwave.com/spiderlabs/advisories/TWSL2013-025.txt

Exploit

https://nvd.nist.gov/vuln/detail/CVE-2013-4885

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-4885

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-4885

EUVD