Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-9707

EmbedThis GoAhead 3.0.0 through 3.4.1 does not properly handle path segments starting with a . (dot), which allows remote attackers to conduct directory traversal attacks, cause a denial of service (heap-based buffer overflow and crash), or possibly execute arbitrary code via a crafted URI.

Published

2015-03-31T14:59:06.250

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-17

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	embedthis	goahead	3.0.0	Yes
Application	embedthis	goahead	3.3.1	Yes
Application	embedthis	goahead	3.3.2	Yes
Application	embedthis	goahead	3.3.3	Yes
Application	embedthis	goahead	3.3.4	Yes
Application	embedthis	goahead	3.3.5	Yes
Application	embedthis	goahead	3.3.6	Yes
Application	embedthis	goahead	3.4.0	Yes

References

http://packetstormsecurity.com/files/131156/GoAhead-3.4.1-Heap-Overflow-Traversal.html Exploit ([email protected])
http://seclists.org/fulldisclosure/2015/Mar/157 Exploit ([email protected])
http://www.securityfocus.com/archive/1/535027/100/0/threaded ([email protected])
http://www.securitytracker.com/id/1032208 ([email protected])
https://github.com/embedthis/goahead/commit/eed4a7d177bf94a54c7b06ccce88507fbd76fb77 ([email protected])
https://github.com/embedthis/goahead/issues/106 ([email protected])
http://packetstormsecurity.com/files/131156/GoAhead-3.4.1-Heap-Overflow-Traversal.html Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2015/Mar/157 Exploit (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/535027/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1032208 (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/embedthis/goahead/commit/eed4a7d177bf94a54c7b06ccce88507fbd76fb77 (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/embedthis/goahead/issues/106 (af854a3a-2127-422b-91ae-364da2661108)