CVE-2013-4885

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.

Published: Oct 26, 2013
Updated: Apr 13, 2023
CVE: CVE-2013-4885
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
nmap / nmap	3.27	3.27.x
nmap / nmap	3.40-pvt9	3.40-pvt9.x
nmap / nmap	3.30	3.30.x
nmap / nmap	3.40-pvt14	3.40-pvt14.x
nmap / nmap	3.98-beta1	3.98-beta1.x
nmap / nmap	2.51	2.51.x
nmap / nmap	2.12	2.12.x
nmap / nmap	4.85-beta3	4.85-beta3.x
nmap / nmap	4.22-soc5	4.22-soc5.x
nmap / nmap	2.52	2.52.x
nmap / nmap	3.40-pvt10	3.40-pvt10.x
nmap / nmap	4.85-beta10	4.85-beta10.x
nmap / nmap	3.40-pvt1	3.40-pvt1.x
nmap / nmap	5.59-beta1	5.59-beta1.x
nmap / nmap	5.51	5.51.x
nmap / nmap	3.10-alpha4	3.10-alpha4.x
nmap / nmap	5.00	5.00.x
nmap / nmap	4.85-beta6	4.85-beta6.x
nmap / nmap	3.10-alpha1	3.10-alpha1.x
nmap / nmap	2.3-beta21	2.3-beta21.x
nmap / nmap	2.54-beta1	2.54-beta1.x
nmap / nmap	2.3-beta9	2.3-beta9.x
nmap / nmap	2.54-beta26	2.54-beta26.x
nmap / nmap	2.3-beta10	2.3-beta10.x
nmap / nmap	4.20-alpha11	4.20-alpha11.x
nmap / nmap	4.10	4.10.x
nmap / nmap	3.94-alpha2	3.94-alpha2.x
nmap / nmap	2.3-beta19	2.3-beta19.x
nmap / nmap	5.10-beta1	5.10-beta1.x
nmap / nmap	2.54-beta33	2.54-beta33.x
nmap / nmap	4.20-alpha1	4.20-alpha1.x
nmap / nmap	2.3-beta12	2.3-beta12.x
nmap / nmap	3.91	3.91.x
nmap / nmap	4.49-rc7	4.49-rc7.x
nmap / nmap	2.54-beta37	2.54-beta37.x
nmap / nmap	4.20-alpha7	4.20-alpha7.x
nmap / nmap	2.54-beta28	2.54-beta28.x
nmap / nmap	2.2-beta4	2.2-beta4.x
nmap / nmap	3.93	3.93.x
nmap / nmap	2.54-beta22	2.54-beta22.x
nmap / nmap	5.61-test1	5.61-test1.x
nmap / nmap	3.40-pvt3	3.40-pvt3.x
nmap / nmap	2.50	2.50.x
nmap / nmap	3.28	3.28.x
nmap / nmap	4.85-beta5	4.85-beta5.x
nmap / nmap	4.21-alpha4	4.21-alpha4.x
nmap / nmap	2.3-beta18	2.3-beta18.x
nmap / nmap	2.3-beta13	2.3-beta13.x
nmap / nmap	2.3-beta5	2.3-beta5.x
nmap / nmap	3.10-alpha7	3.10-alpha7.x
nmap / nmap	3.15-beta3	3.15-beta3.x
nmap / nmap	4.22-soc2	4.22-soc2.x
nmap / nmap	4.49-rc1	4.49-rc1.x
nmap / nmap	2.54-beta3	2.54-beta3.x
nmap / nmap	2.3-beta14	2.3-beta14.x
nmap / nmap	6.01	6.01.x
nmap / nmap	3.95	3.95.x
nmap / nmap	4.76	4.76.x
nmap / nmap	3.40-pvt2	3.40-pvt2.x
nmap / nmap	4.51-beta	4.51-beta.x
nmap / nmap	4.62	4.62.x
nmap / nmap	2.54-beta19	2.54-beta19.x
nmap / nmap	4.20-alpha9	4.20-alpha9.x
nmap / nmap	5.21	5.21.x
nmap / nmap	2.1-beta1	2.1-beta1.x
nmap / nmap	2.54-beta7	2.54-beta7.x
nmap / nmap	3.48	3.48.x
nmap / nmap	3.10-alpha5	3.10-alpha5.x
nmap / nmap	4.22-soc8	4.22-soc8.x
nmap / nmap	3.10-alpha9	3.10-alpha9.x
nmap / nmap	2.54-beta31	2.54-beta31.x
nmap / nmap	3.55	3.55.x
nmap / nmap	3.40-pvt16	3.40-pvt16.x
nmap / nmap	4.85-beta2	4.85-beta2.x
nmap / nmap	4.50	4.50.x
nmap / nmap	3.10-alpha3	3.10-alpha3.x
nmap / nmap	5.10-beta2	5.10-beta2.x
nmap / nmap	4.75	4.75.x
nmap / nmap	2.54-beta5	2.54-beta5.x
nmap / nmap	4.20-alpha10	4.20-alpha10.x
nmap / nmap	4.85-beta8	4.85-beta8.x
nmap / nmap	2.3-beta17	2.3-beta17.x
nmap / nmap	3.96-beta1	3.96-beta1.x
nmap / nmap	4.65	4.65.x
nmap / nmap	4.22-soc3	4.22-soc3.x
nmap / nmap	3.20	3.20.x
nmap / nmap	3.40-pvt15	3.40-pvt15.x
nmap / nmap	3.40-pvt6	3.40-pvt6.x
nmap / nmap	2.06	2.06.x
nmap / nmap	2.54-beta6	2.54-beta6.x
nmap / nmap	3.45	3.45.x
nmap / nmap	4.20	4.20.x
nmap / nmap	4.85-beta4	4.85-beta4.x
nmap / nmap	2.11	2.11.x
nmap / nmap	4.20-alpha3	4.20-alpha3.x
nmap / nmap	3.40-pvt4	3.40-pvt4.x
nmap / nmap	2.3-beta8	2.3-beta8.x
nmap / nmap	2.54-beta27	2.54-beta27.x
nmap / nmap	2.2-beta3	2.2-beta3.x
nmap / nmap	4.49-rc2	4.49-rc2.x
nmap / nmap	3.70	3.70.x
nmap / nmap	4.49-rc3	4.49-rc3.x
nmap / nmap	2.54-beta21	2.54-beta21.x
nmap / nmap	2.07	2.07.x
nmap / nmap	3.75	3.75.x
nmap / nmap	2.54-beta35	2.54-beta35.x
nmap / nmap	3.15-beta1	3.15-beta1.x
nmap / nmap	4.03	4.03.x
nmap / nmap	3.26	3.26.x
nmap / nmap	4.20-alpha6	4.20-alpha6.x
nmap / nmap	3.40-pvt13	3.40-pvt13.x
nmap / nmap	2.54-beta2	2.54-beta2.x
nmap / nmap	6.20-beta1	6.20-beta1.x
nmap / nmap	2.54-beta36	2.54-beta36.x
nmap / nmap	2.99-rc1	2.99-rc1.x
nmap / nmap	4.22-soc6	4.22-soc6.x
nmap / nmap	4.02-alpha2	4.02-alpha2.x
nmap / nmap	2.54-beta34	2.54-beta34.x
nmap / nmap	2.99-rc2	2.99-rc2.x
nmap / nmap	5.61-test5	5.61-test5.x
nmap / nmap	4.68	4.68.x
nmap / nmap	3.94-alpha1	3.94-alpha1.x
nmap / nmap	4.85-beta9	4.85-beta9.x
nmap / nmap	2.09	2.09.x
nmap / nmap	4.20-rc1	4.20-rc1.x
nmap / nmap	2.3-beta20	2.3-beta20.x
nmap / nmap	2.54-beta29	2.54-beta29.x
nmap / nmap	2.3-beta4	2.3-beta4.x
nmap / nmap	3.25	3.25.x
nmap / nmap	4.11	4.11.x
nmap / nmap	2.05	2.05.x
nmap / nmap	4.49-rc6	4.49-rc6.x
nmap / nmap	3.50	3.50.x
nmap / nmap	4.21-alpha1	4.21-alpha1.x
nmap / nmap	5.61-test2	5.61-test2.x
nmap / nmap	4.22-soc1	4.22-soc1.x
nmap / nmap	2.54-beta16	2.54-beta16.x
nmap / nmap	3.81	3.81.x
nmap / nmap	4.52	4.52.x
nmap / nmap	3.99	3.99.x
nmap / nmap	4.01	4.01.x
nmap / nmap	4.20-alpha4	4.20-alpha4.x
nmap / nmap	4.04-beta1	4.04-beta1.x
nmap / nmap	2.54-beta24	2.54-beta24.x
nmap / nmap	3.10-alpha2	3.10-alpha2.x
nmap / nmap	4.21-alpha2	4.21-alpha2.x
nmap / nmap	3.40-pvt7	3.40-pvt7.x
nmap / nmap	4.21-alpha3	4.21-alpha3.x
nmap / nmap	3.40-pvt12	3.40-pvt12.x
nmap / nmap	5.61-test4	5.61-test4.x
nmap / nmap	3.90	3.90.x
nmap / nmap	4.20-alpha8	4.20-alpha8.x
nmap / nmap	2.10	2.10.x
nmap / nmap	4.85-beta1	4.85-beta1.x
nmap / nmap	4.85-beta7	4.85-beta7.x
nmap / nmap	3.9999	3.9999.x
nmap / nmap	2.54-beta20	2.54-beta20.x
nmap / nmap	4.00	4.00.x
nmap / nmap	4.49-rc5	4.49-rc5.x
nmap / nmap	4.02-alpha1	4.02-alpha1.x
nmap / nmap	4.60	4.60.x
nmap / nmap	3.40-pvt17	3.40-pvt17.x
nmap / nmap	-	6.25.x
nmap / nmap	2.54-beta25	2.54-beta25.x
nmap / nmap	5.20	5.20.x
nmap / nmap	4.20-rc2	4.20-rc2.x
nmap / nmap	4.20-alpha5	4.20-alpha5.x
nmap / nmap	5.30-beta1	5.30-beta1.x
nmap / nmap	4.90-rc1	4.90-rc1.x
nmap / nmap	6.00	6.00.x
nmap / nmap	4.53	4.53.x
nmap / nmap	3.00	3.00.x
nmap / nmap	3.15-beta2	3.15-beta2.x
nmap / nmap	5.35-dc1	5.35-dc1.x
nmap / nmap	2.53	2.53.x
nmap / nmap	5.50	5.50.x
nmap / nmap	4.22-soc7	4.22-soc7.x
nmap / nmap	2.54-beta30	2.54-beta30.x
nmap / nmap	2.54-beta32	2.54-beta32.x
nmap / nmap	3.40-pvt11	3.40-pvt11.x
nmap / nmap	4.20-alpha2	4.20-alpha2.x
nmap / nmap	2.3-beta6	2.3-beta6.x
nmap / nmap	3.94-alpha3	3.94-alpha3.x
nmap / nmap	2.54-beta4	2.54-beta4.x
nmap / nmap	3.999	3.999.x
nmap / nmap	4.49-rc4	4.49-rc4.x
nmap / nmap	3.40-pvt8	3.40-pvt8.x
nmap / nmap	2.2-beta2	2.2-beta2.x
nmap / nmap	2.08	2.08.x
opensuse / opensuse	12.3	12.3.x

Vulnerability Database

290,273

CVE-2013-4885