CVE-2011-2524

Published Aug 31, 2011
Last updated 13 years ago
CVSS info 5.0
Overview

Description: Directory traversal vulnerability in soup-uri.c in SoupServer in libsoup before 2.35.4 allows remote attackers to read arbitrary files via a %2e%2e (encoded dot dot) in a URI.
Source: secalert@redhat.com
NVD status: Modified
Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses

nvd@nist.gov: CWE-22
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8C5DD5AB-8CB2-4B2E-AE93-3754085845ED",
            "versionEndIncluding": "2.35.3"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99EFB489-06D8-402D-8470-38551BCB2FC6"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1C82429-BB29-49E7-ADFA-EED16ED7AFC8"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9B9D7017-F606-4466-8F9A-817C6862AD95"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3619C616-7DAB-4035-9D23-2F2336954DBB"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E672080A-06D2-4C2C-B3D1-BE679D5649BF"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B1B4616-3889-41B6-870F-37DC78A153FA"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E1E613A-B333-4E96-90BA-A2AD4363DEB8"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8EEDB4A8-5593-47C3-92F3-F91476C0D4F1"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FD001D38-16AB-4AFB-9DC6-F7A340436E2B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.6.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D5398E1-3FB1-4BEA-9278-F9C041A34BD2"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C03F3575-9B90-419C-A5A5-5535F537F096"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "467EDDA7-DA81-4DC5-815F-9D1B394CB02F"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63FE3D88-0596-479B-8E38-E47C7FA04397"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.93:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF7DEA94-7E9C-457B-B095-66CC23E9681F"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.94:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F806A86-1250-49EE-992A-09574191D087"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.95.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E72DA717-D352-4DCB-BBF9-231284B945F8"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.96:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "19FD71C4-0D7E-4E32-ABFB-35D2943AFC5C"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.97:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3AE675A3-B03B-4417-8671-F289604C2291"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.98:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5AE3AD41-FAEA-41CE-8317-89E76BE9FE68"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.99:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0DD23A95-C65E-4C2E-BAAC-0D8364A1DBF8"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.100:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "969CB6C0-AD9B-4F48-B77A-0BE3F56B0B22"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.101:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "95B2D824-7560-4779-A844-07D86C2CCAAB"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.102:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EBCC06A9-A79D-4CB2-ADCD-AC1987E2790B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.103:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "25DE1614-7F35-4484-BE88-F9C4D9935EC1"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.2.104:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1756B5C1-18E1-4C6D-89AD-17432B29EBB9"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.3.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "22EA54CB-F7C9-4B17-9118-BA335B9E8D46"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.3.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0C43A424-B38A-4819-AFC3-3532C447DF9F"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.3.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C994C81-6B80-47E8-AD70-B2DC7BF12209"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FC08FAE6-B41F-41B8-B819-F582DBEA918A"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.4.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6D6E08FA-E647-42B7-A033-806DAC1F4951"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.23.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2752C2FA-7627-4488-88A5-5E6F76FC8F3D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.23.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F4AE3DE-5379-47A0-9BDC-AB49323F85C1"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.23.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "896575A0-8B7B-43BE-A653-0BEF54E3049B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.23.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A02CCE6B-C774-4D9C-AD88-69D24651E1F0"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.24.0.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9299BB6F-DF57-427C-A0D0-7F872810420B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.24.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BEB94071-AB85-412E-A31B-29FD8189484D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.25.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0BC56735-58B1-4780-ABA9-32501C24B56F"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.25.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "72B7C474-9C79-4C1F-B0A3-A5780F87379A"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.25.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF3B6CBD-5F44-4FC6-83B7-41134055D1AB"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.25.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "832089BA-670E-40E1-A812-164F13FE29C1"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.25.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C76B162-8BCC-43A9-A00B-BEDC16F02C2E"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.26.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "42B5A587-2F23-42CB-BE0F-1F5A4E96AD06"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.26.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C713940D-24D7-429F-B961-E3E1651F30C9"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4C537C96-A138-4D5D-A657-E04D3E2B04AB"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6C5EFE4E-ED20-4CB2-B0DE-D7A726F26221"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "99340F6B-F033-497F-AD66-655504495CBD"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7DFE407F-7F02-4E08-9242-41E51A436F1D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A838EB16-BC34-4747-84E6-FD31718BC708"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EB6F6369-34FD-47D2-A829-BB36CBAAA99A"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.27.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "054A96BA-6584-4D6B-AEB5-FE12209E5C69"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.28.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0FAB459F-29F5-4AD9-95F4-95F5D05FE91B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.28.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9FFD7530-6548-4A91-9A0A-F80429368E4B"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.29.3:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0B48661A-D82E-49D7-917C-3D6A3A7CE116"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.29.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BA0FA486-3657-48DC-9E10-11EE8A1458B7"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.29.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15F7CFA6-628D-4CF5-93EB-55519CF955EB"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.29.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5D1878C5-80C7-4DC2-987C-1BC52E63A8C4"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.29.91:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7D7E6439-AC14-4D45-BC73-C0BF7E79BE9D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.30.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C2E158D5-987A-4F93-82A0-CF74527CA210"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.30.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CE0D94D2-D74A-448F-9DF5-4B4C23138E0A"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.31.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0D363498-6F1D-4EEF-853D-905F1D95E62D"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.31.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "981AF805-9646-4913-B274-1969AFACC734"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.31.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C1197161-E084-4485-BA72-B60C07469680"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.31.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F9E91156-537E-4885-87C2-EC4BA8C2B306"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.32.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9130A56A-2995-455A-8A51-1A0A85F3D38E"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.32.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F3A81CD2-1192-4F9E-8BF4-BF86445E11AA"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.32.2:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92398648-8754-4130-BA90-A54838AFA159"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.33.4:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C536F346-4B27-4A53-A942-68531D9991A0"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.33.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8F602177-543B-4A42-92C1-53F1573518FD"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.33.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8011A42F-B7EF-44F2-BE9A-E2543EB1C808"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.33.90:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "EC3501F1-B153-4870-A7A4-741ACA848656"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.33.92:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "398B638B-9879-403D-9F55-59FCC8CE3F31"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.34.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A16CBF8D-7411-4E16-81B0-47696F036C35"
          },
          {
            "criteria": "cpe:2.3:a:gnome:libsoup:2.34.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4AC22BA2-D63A-48F8-BF0F-90D664EA6856"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References
