5 - CVE-2011-2524

Executive Summary

This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. For more information, you can read this.

Informations
Name	CVE-2011-2524	First vendor Publication	2011-08-31
Vendor	Cve	Last vendor Modification	2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:N)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2524

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-22	Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE/SANS Top 25)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:13756

Oval ID:	oval:org.mitre.oval:def:13756
Title:	USN-1181-1 -- libsoup2.4 vulnerability
Description:	libsoup2.4: HTTP client/server library for GNOME An attacker could send crafted URLs to a SoupServer application and obtain unintended access to files.
Family:	unix	Class:	patch
Reference(s):	USN-1181-1 CVE-2011-2524	Version:	5
Platform(s):	Ubuntu 11.04 Ubuntu 10.04 Ubuntu 10.10	Product(s):	libsoup2.4
Definition Synopsis:
Release section Ubuntu 11.04 is installed AND Installed architecture is all AND libsoup2.4-1 DPKG is earlier than 2.34.0-0ubuntu1.1 OR Release section Ubuntu 10.04 is installed AND Installed architecture is all AND libsoup2.4-1 DPKG is earlier than 2.30.2-0ubuntu0.2 OR Release section Ubuntu 10.10 is installed AND Installed architecture is all AND libsoup2.4-1 DPKG is earlier than 2.31.92-0ubuntu1.1

Definition Id: oval:org.mitre.oval:def:14946

Oval ID:	oval:org.mitre.oval:def:14946
Title:	DSA-2369-1 libsoup2.4 -- insufficient input sanitisation
Description:	It was discovered that libsoup2.4, a HTTP library implementation in C, is not properly validating input when processing requests made to SoupServer. A remote attacker can exploit this flaw to access system files via a directory traversal attack.
Family:	unix	Class:	patch
Reference(s):	DSA-2369-1 CVE-2011-2524	Version:	5
Platform(s):	Debian GNU/Linux 5.0 Debian GNU/Linux 6.0 Debian GNU/kFreeBSD 6.0	Product(s):	libsoup2.4
Definition Synopsis:
Release section Debian GNU/Linux 5.0 is installed AND Installed architecture is all AND libsoup2.4 DPKG is earlier than 2.4.1-2+lenny1 OR Release section Debian 6.0 is installed AND GNU/Linux or GNU/kFreeBSD kernel Debian GNU/Linux is installed AND Debian GNU/kFreeBSD is installed AND Installed architecture is all AND libsoup2.4 DPKG is earlier than 2.30.2-1+squeeze1

Definition Id: oval:org.mitre.oval:def:21933

Oval ID:	oval:org.mitre.oval:def:21933
Title:	RHSA-2011:1102: libsoup security update (Moderate)
Description:	Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Family:	unix	Class:	patch
Reference(s):	RHSA-2011:1102-01 CVE-2011-2524	Version:	4
Platform(s):	Red Hat Enterprise Linux 6	Product(s):	libsoup
Definition Synopsis:
The operating system installed on the system is Red Hat Enterprise Linux 6 Packages section libsoup-devel is earlier than 0:2.28.2-1.el6_1.1 AND libsoup is earlier than 0:2.28.2-1.el6_1.1

Definition Id: oval:org.mitre.oval:def:23644

Oval ID:	oval:org.mitre.oval:def:23644
Title:	ELSA-2011:1102: libsoup security update (Moderate)
Description:	Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Family:	unix	Class:	patch
Reference(s):	ELSA-2011:1102-01 CVE-2011-2524	Version:	6
Platform(s):	Oracle Linux 6	Product(s):	libsoup
Definition Synopsis:
Oracle Linux 6.x rpm test libsoup-devel is earlier than 0:2.28.2-1.el6_1.1 AND libsoup is earlier than 0:2.28.2-1.el6_1.1

Definition Id: oval:org.mitre.oval:def:28119

Oval ID:	oval:org.mitre.oval:def:28119
Title:	DEPRECATED: ELSA-2011-1102 -- libsoup security update (moderate)
Description:	[2.28.2-1.1] - Patch for CVE-2011-2524
Family:	unix	Class:	patch
Reference(s):	ELSA-2011-1102 CVE-2011-2524	Version:	4
Platform(s):	Oracle Linux 6	Product(s):	libsoup
Definition Synopsis:
Oracle Linux 6.x Packages match section libsoup is earlier than 0:2.28.2-1.el6_1.1 AND libsoup-devel is earlier than 0:2.28.2-1.el6_1.1

CPE : Common Platform Enumeration

Type	Description	Count
Application	Gnome Libsoup cpe:2.3:a:gnome:libsoup:2.4.1:::::::* cpe:2.3:a:gnome:libsoup:2.4.0:::::::* cpe:2.3:a:gnome:libsoup:2.34.1:::::::* cpe:2.3:a:gnome:libsoup:2.34.0:::::::* cpe:2.3:a:gnome:libsoup:2.33.92:::::::* cpe:2.3:a:gnome:libsoup:2.33.90:::::::* cpe:2.3:a:gnome:libsoup:2.33.6:::::::* cpe:2.3:a:gnome:libsoup:2.33.5:::::::* cpe:2.3:a:gnome:libsoup:2.33.4:::::::* cpe:2.3:a:gnome:libsoup:2.32.2:::::::* cpe:2.3:a:gnome:libsoup:2.32.1:::::::* cpe:2.3:a:gnome:libsoup:2.32.0:::::::* cpe:2.3:a:gnome:libsoup:2.31.92:::::::* cpe:2.3:a:gnome:libsoup:2.31.90:::::::* cpe:2.3:a:gnome:libsoup:2.31.6:::::::* cpe:2.3:a:gnome:libsoup:2.31.2:::::::* cpe:2.3:a:gnome:libsoup:2.30.1:::::::* cpe:2.3:a:gnome:libsoup:2.30.0:::::::* cpe:2.3:a:gnome:libsoup:2.3.4:::::::* cpe:2.3:a:gnome:libsoup:2.3.2:::::::* cpe:2.3:a:gnome:libsoup:2.3.0.1:::::::* cpe:2.3:a:gnome:libsoup:2.29.91:::::::* cpe:2.3:a:gnome:libsoup:2.29.90:::::::* cpe:2.3:a:gnome:libsoup:2.29.6:::::::* cpe:2.3:a:gnome:libsoup:2.29.5:::::::* cpe:2.3:a:gnome:libsoup:2.29.3:::::::* cpe:2.3:a:gnome:libsoup:2.28.1:::::::* cpe:2.3:a:gnome:libsoup:2.28.0:::::::* cpe:2.3:a:gnome:libsoup:2.27.92:::::::* cpe:2.3:a:gnome:libsoup:2.27.91:::::::* cpe:2.3:a:gnome:libsoup:2.27.90:::::::* cpe:2.3:a:gnome:libsoup:2.27.5:::::::* cpe:2.3:a:gnome:libsoup:2.27.4:::::::* cpe:2.3:a:gnome:libsoup:2.27.2:::::::* cpe:2.3:a:gnome:libsoup:2.27.1:::::::* cpe:2.3:a:gnome:libsoup:2.26.1:::::::* cpe:2.3:a:gnome:libsoup:2.26.0:::::::* cpe:2.3:a:gnome:libsoup:2.25.91:::::::* cpe:2.3:a:gnome:libsoup:2.25.5:::::::* cpe:2.3:a:gnome:libsoup:2.25.4:::::::* cpe:2.3:a:gnome:libsoup:2.25.3:::::::* cpe:2.3:a:gnome:libsoup:2.25.2:::::::* cpe:2.3:a:gnome:libsoup:2.24.1:::::::* cpe:2.3:a:gnome:libsoup:2.24.0.1:::::::* cpe:2.3:a:gnome:libsoup:2.23.92:::::::* cpe:2.3:a:gnome:libsoup:2.23.91:::::::* cpe:2.3:a:gnome:libsoup:2.23.6:::::::* cpe:2.3:a:gnome:libsoup:2.23.1:::::::* cpe:2.3:a:gnome:libsoup:2.2.99:::::::* cpe:2.3:a:gnome:libsoup:2.2.98:::::::* cpe:2.3:a:gnome:libsoup:2.2.97:::::::* cpe:2.3:a:gnome:libsoup:2.2.96:::::::* cpe:2.3:a:gnome:libsoup:2.2.95.1:::::::* cpe:2.3:a:gnome:libsoup:2.2.94:::::::* cpe:2.3:a:gnome:libsoup:2.2.93:::::::* cpe:2.3:a:gnome:libsoup:2.2.92:::::::* cpe:2.3:a:gnome:libsoup:2.2.91:::::::* cpe:2.3:a:gnome:libsoup:2.2.7:::::::* cpe:2.3:a:gnome:libsoup:2.2.6.1:::::::* cpe:2.3:a:gnome:libsoup:2.2.6:::::::* cpe:2.3:a:gnome:libsoup:2.2.5:::::::* cpe:2.3:a:gnome:libsoup:2.2.4:::::::* cpe:2.3:a:gnome:libsoup:2.2.3:::::::* cpe:2.3:a:gnome:libsoup:2.2.2:::::::* cpe:2.3:a:gnome:libsoup:2.2.104:::::::* cpe:2.3:a:gnome:libsoup:2.2.103:::::::* cpe:2.3:a:gnome:libsoup:2.2.102:::::::* cpe:2.3:a:gnome:libsoup:2.2.101:::::::* cpe:2.3:a:gnome:libsoup:2.2.100:::::::* cpe:2.3:a:gnome:libsoup:2.2.1:::::::* cpe:2.3:a:gnome:libsoup:2.2.0:::::::* cpe:2.3:a:gnome:libsoup:2.2:::::::* cpe:2.3:a:gnome:libsoup:2.0:::::::* cpe:2.3:a:gnome:libsoup::::::::	74

OpenVAS Exploits

Date	Description
2012-08-03	Name : Mandriva Update for libsoup MDVSA-2012:036 (libsoup) File : nvt/gb_mandriva_MDVSA_2012_036.nasl
2012-07-09	Name : RedHat Update for libsoup RHSA-2011:1102-01 File : nvt/gb_RHSA-2011_1102-01_libsoup.nasl
2012-02-11	Name : Debian Security Advisory DSA 2369-1 (libsoup2.4) File : nvt/deb_2369_1.nasl
2011-09-27	Name : Fedora Update for libsoup FEDORA-2011-9820 File : nvt/gb_fedora_2011_9820_libsoup_fc14.nasl
2011-08-12	Name : Fedora Update for libsoup FEDORA-2011-9763 File : nvt/gb_fedora_2011_9763_libsoup_fc15.nasl
2011-08-02	Name : Ubuntu Update for libsoup2.4 USN-1181-1 File : nvt/gb_ubuntu_USN_1181_1.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
74135	libsoup SoupServer soup-uri.c HTTP Request Parsing Traversal Arbitrary File A... libsoup contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to soup-uri.c in the SoupServer feature not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via HTTP Requests. This directory traversal attack would allow the attacker to access arbitrary files.

Description

74135

libsoup SoupServer soup-uri.c HTTP Request Parsing Traversal Arbitrary File A...

libsoup contains a flaw that allows a remote attacker to traverse outside of a restricted path. The issue is due to soup-uri.c in the SoupServer feature not properly sanitizing user input, specifically directory traversal style attacks (e.g., ../../) supplied via HTTP Requests. This directory traversal attack would allow the attacker to access arbitrary files.

Nessus® Vulnerability Scanner

Date	Description
2015-01-19	Name : The remote Solaris system is missing a security patch for third-party software. File : solaris11_libsoup_20120918.nasl - Type : ACT_GATHER_INFO
2014-12-15	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201412-09.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_3_libsoup-2_4-1-110729.nasl - Type : ACT_GATHER_INFO
2014-06-13	Name : The remote openSUSE host is missing a security update. File : suse_11_4_libsoup-2_4-1-110729.nasl - Type : ACT_GATHER_INFO
2013-07-12	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2011-1102.nasl - Type : ACT_GATHER_INFO
2012-08-01	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20110728_libsoup_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2012-03-26	Name : The remote Mandriva Linux host is missing one or more security updates. File : mandriva_MDVSA-2012-036.nasl - Type : ACT_GATHER_INFO
2012-01-12	Name : The remote Debian host is missing a security-related update. File : debian_DSA-2369.nasl - Type : ACT_GATHER_INFO
2011-09-26	Name : The remote Fedora host is missing a security update. File : fedora_2011-9820.nasl - Type : ACT_GATHER_INFO
2011-08-08	Name : The remote Fedora host is missing a security update. File : fedora_2011-9763.nasl - Type : ACT_GATHER_INFO
2011-08-08	Name : The remote SuSE 11 host is missing one or more security updates. File : suse_11_libsoup-110731.nasl - Type : ACT_GATHER_INFO
2011-07-29	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2011-1102.nasl - Type : ACT_GATHER_INFO
2011-07-29	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-1181-1.nasl - Type : ACT_GATHER_INFO
1999-11-05	Name : The remote web server is affected by a directory traversal vulnerability. File : web_traversal.nasl - Type : ACT_ATTACK

Sources (Detail)

http://git.gnome.org/browse/libsoup/tree/NEWS
http://lists.fedoraproject.org/pipermail/package-announce/2011-August/063431....
http://secunia.com/advisories/47299
http://www.debian.org/security/2011/dsa-2369
http://www.redhat.com/support/errata/RHSA-2011-1102.html
http://www.securitytracker.com/id?1025864
http://www.ubuntu.com/usn/USN-1181-1
https://bugzilla.gnome.org/show_bug.cgi?id=653258

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:04:19	Multiple Updates
2024-11-28 12:26:09	Multiple Updates
2021-05-05 01:08:30	Multiple Updates
2021-05-04 12:14:44	Multiple Updates
2021-04-22 01:16:03	Multiple Updates
2020-05-23 01:44:50	Multiple Updates
2020-05-23 00:28:57	Multiple Updates
2019-06-13 12:04:03	Multiple Updates
2019-05-23 12:02:34	Multiple Updates
2016-04-26 20:51:56	Multiple Updates
2015-01-21 13:24:49	Multiple Updates
2014-12-16 13:24:51	Multiple Updates
2014-06-14 13:31:02	Multiple Updates
2014-02-17 11:03:22	Multiple Updates
2013-05-10 23:03:16	Multiple Updates

Global Informations

Type	Count
CWE ID(s)	1
Oval ID(s)	5
CPE ID(s)	74
Sources(s)	8
osvdb(s)	1
Openvas Exploit(s)	6
Nessus® Exploit(s)	14

	Related
10	GLSA-201412-09
5	USN-1181-1
5	RHSA-2011:1102
5	MDVSA-2012:036
5	DSA-2369
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 5 more Alert(s)