| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 6.0 | $0-$5k | 0.00 |
Summary
A vulnerability, which was classified as critical, has been found in MoinMo MoinMoin up to 1.3.4. This issue affects some unknown processing of the component File Upload. Performing a manipulation results in unrestricted upload. This vulnerability is cataloged as CVE-2012-6081. Furthermore, there is an exploit available. It is advisable to upgrade the affected component.
Details
A vulnerability, which was classified as critical, was found in MoinMo MoinMoin up to 1.3.4 (Content Management System). This affects an unknown functionality of the component File Upload. The manipulation with an unknown input leads to a unrestricted upload vulnerability. CWE is classifying the issue as CWE-434. The product allows the attacker to upload or transfer files of dangerous types that can be automatically processed within the product's environment. This is going to have an impact on confidentiality, integrity, and availability. The summary by CVE is:
Multiple unrestricted file upload vulnerabilities in the (1) twikidraw (action/twikidraw.py) and (2) anywikidraw (action/anywikidraw.py) actions in MoinMoin before 1.9.6 allow remote authenticated users with write permissions to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in an unspecified directory, as exploited in the wild in July 2012.
The weakness was shared 01/02/2013 (Website). The advisory is shared at hg.moinmo.in. This vulnerability is uniquely identified as CVE-2012-6081 since 12/06/2012. It is possible to initiate the attack remotely. The successful exploitation needs a authentication. Technical details are unknown but a public exploit is available. MITRE ATT&CK project uses the attack technique T1608.002 for this issue.
A public exploit has been developed by HTP in Python and been published 5 months after the advisory. The exploit is shared for download at securityfocus.com. It is declared as attacked. The vulnerability scanner Nessus provides a plugin with the ID 63638 (MoinMoin twikidraw.py Traversal File Upload Arbitrary File Overwrite), which helps to determine the existence of the flaw in a target environment. It is assigned to the family CGI abuses. The commercial vulnerability scanner Qualys is able to test this issue with plugin 195336 (Ubuntu Security Notification for Moin Vulnerabilities (USN-1680-1)).
Upgrading to version 1.3.5 eliminates this vulnerability.
The vulnerability is also documented in the databases at X-Force (80901), Exploit-DB (25304), Zero-Day.cz (350), Tenable (63638) and SecurityFocus (BID 57082†). The entries VDB-63311, VDB-63310 and VDB-63308 are related to this item. If you want to get the best quality for vulnerability data then you always have to consider VulDB.
Product
Type
Vendor
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 6.3VulDB Meta Temp Score: 6.0
VulDB Base Score: 6.3
VulDB Temp Score: 6.0
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Unrestricted uploadCWE: CWE-434 / CWE-284 / CWE-266
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Access: Public
Status: Attacked
Author: HTP
Programming Language: 🔍
Download: 🔍
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Nessus ID: 63638
Nessus Name: MoinMoin twikidraw.py Traversal File Upload Arbitrary File Overwrite
Nessus File: 🔍
Nessus Risk: 🔍
Nessus Family: 🔍
OpenVAS ID: 892593
OpenVAS Name: Debian Security Advisory DSA 2593-1 (moin - several vulnerabilities
OpenVAS File: 🔍
OpenVAS Family: 🔍
Qualys ID: 🔍
Qualys Name: 🔍
MetaSploit ID: moinmoin_twikidraw.rb
MetaSploit Name: MoinMoin twikidraw Action Traversal File Upload
MetaSploit File: 🔍
D2Sec: MoinMoin 1.9.5 RCE
Exploit-DB: 🔍
Zero-Day.cz: 🔍
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Exploit Delay Time: 🔍
Upgrade: MoinMoin 1.3.5
Suricata ID: 2017074
Suricata Class: 🔍
Suricata Message: 🔍
McAfee IPS: 🔍
McAfee IPS Version: 🔍
Fortigate IPS: 🔍
Timeline
12/06/2012 🔍12/29/2012 🔍
12/29/2012 🔍
12/31/2012 🔍
01/02/2013 🔍
01/02/2013 🔍
01/15/2013 🔍
01/21/2013 🔍
05/08/2013 🔍
05/08/2013 🔍
03/24/2015 🔍
07/15/2024 🔍
Sources
Advisory: usn-1680-1Status: Confirmed
Confirmation: 🔍
CVE: CVE-2012-6081 (🔍)
GCVE (CVE): GCVE-0-2012-6081
GCVE (VulDB): GCVE-100-63309
OVAL: 🔍
X-Force: 80901
SecurityFocus: 57082 - MoinMoin CVE-2012-6081 Multiple Arbitrary Code Execution Vulnerabilities
Secunia: 51663 - MoinMoin Multiple Vulnerabilities, Highly Critical
Vulnerability Center: 38041 - MoinMoin Before 1.9.6 Multiple Unrestricted File Upload Vulnerabilities Allow Remote Code Execution, Medium
scip Labs: https://www.scip.ch/en/?labs.20161013
See also: 🔍
Entry
Created: 03/24/2015 12:22Updated: 07/15/2024 01:56
Changes: 03/24/2015 12:22 (81), 01/29/2018 16:08 (17), 12/21/2021 10:53 (3), 12/21/2021 10:58 (1), 12/21/2021 11:05 (1), 06/20/2024 07:06 (15), 07/15/2024 01:56 (4)
Complete: 🔍
Cache ID: 216:D90:103
If you want to get the best quality for vulnerability data then you always have to consider VulDB.
No comments yet. Languages: en.
Please log in to comment.