FKIE_CVE-2008-6508

Vulnerability from fkie_nvd - Published: 2009-03-23 20:00 - Updated: 2025-04-09 00:30
Severity ?
Summary
Directory traversal vulnerability in the AuthCheck filter in the Admin Console in Openfire 3.6.0a and earlier allows remote attackers to bypass authentication and access the admin interface via a .. (dot dot) in a URI that matches the Exclude-Strings list, as demonstrated by a /setup/setup-/.. sequence in a URI.
References
cve@mitre.orghttp://osvdb.org/49663Exploit
cve@mitre.orghttp://secunia.com/advisories/32478
cve@mitre.orghttp://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txtExploit
cve@mitre.orghttp://www.andreas-kurtz.de/archives/63
cve@mitre.orghttp://www.igniterealtime.org/builds/openfire/docs/latest/changelog.htmlPatch, Vendor Advisory
cve@mitre.orghttp://www.igniterealtime.org/issues/browse/JM-1489Patch, Vendor Advisory
cve@mitre.orghttp://www.securityfocus.com/archive/1/498162/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/32189Exploit
cve@mitre.orghttp://www.vupen.com/english/advisories/2008/3061Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/46488
cve@mitre.orghttps://www.exploit-db.com/exploits/7075
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/49663Exploit
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/32478
af854a3a-2127-422b-91ae-364da2661108http://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txtExploit
af854a3a-2127-422b-91ae-364da2661108http://www.andreas-kurtz.de/archives/63
af854a3a-2127-422b-91ae-364da2661108http://www.igniterealtime.org/builds/openfire/docs/latest/changelog.htmlPatch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.igniterealtime.org/issues/browse/JM-1489Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/498162/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/32189Exploit
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/3061Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/46488
af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/7075
Impacted products
Vendor Product Version
igniterealtime openfire *
igniterealtime openfire 2.6.0
igniterealtime openfire 2.6.1
igniterealtime openfire 2.6.2
igniterealtime openfire 3.0.0
igniterealtime openfire 3.0.1
igniterealtime openfire 3.1.0
igniterealtime openfire 3.1.1
igniterealtime openfire 3.2.0
igniterealtime openfire 3.2.1
igniterealtime openfire 3.2.2
igniterealtime openfire 3.2.3
igniterealtime openfire 3.2.4
igniterealtime openfire 3.3.0
igniterealtime openfire 3.3.2
igniterealtime openfire 3.3.3
igniterealtime openfire 3.4.0
igniterealtime openfire 3.4.1
igniterealtime openfire 3.4.3
igniterealtime openfire 3.4.4
igniterealtime openfire 3.4.5
igniterealtime openfire 3.5.0
igniterealtime openfire 3.5.1
igniterealtime openfire 3.5.2
igniterealtime openfire 3.6.0
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8733075B-1FFE-4A66-A80E-81111A3FC05D",
              "versionEndIncluding": "3.6.0a",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:2.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "20332EC7-FD3C-4118-8FE9-CF8DF62FC2CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:2.6.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "44EE43D4-190A-4188-AB48-34C87FA1CC10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:2.6.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "73E425C2-E94D-41A9-A0A7-22498B138E6E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1438E68-1149-49A8-AC38-4D65D19D7B8E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "57A6F7A2-1AFB-41DB-9C2D-BE0785BAC6A4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "ABD75603-FE40-47CB-9810-F91C983F8732",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E4CC033A-F03B-4486-A27D-042FF0D3AB4B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF90E1E8-1635-4A20-9EA1-4BAE1C63EB32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "972DEE02-8707-473D-9BB9-A6A04F4B239C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.2.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F9819365-ACD9-4801-B277-9B6D2A9CF3BB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "70B640A2-A662-4BDC-970E-D71F6C1AC7A8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.2.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "DF31BC81-E6B0-4B98-95C1-27C4F163A146",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6DC95549-3BC1-4296-9993-3C917FE895F5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "664BCEB5-F38C-4FB2-95B3-E8F88FB8FC29",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.3.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "D5EA88D8-C41E-4CE1-85EB-8A0A23811FB0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B16CECC-131F-4463-B8CE-101BD597C210",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "650101D4-7395-4C4E-8862-84CE365259BE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "A848F149-C5EC-4E1E-B3EB-98066C5AE0EC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE2746D5-0081-4065-97D0-2DBF5B8F00AB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.4.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B870602-8455-4DDD-8CEE-0A4016714E6C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.5.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE94D0C3-188D-42D1-B868-D32AF4D3432C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.5.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B845B1D-DC2D-47F0-A3DF-32AE01DDB6F5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.5.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A1F4DD7-1B60-4006-842E-AE286302247F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:igniterealtime:openfire:3.6.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A469BBA3-5DD6-42B5-ABBD-A9342ADC703A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Directory traversal vulnerability in the AuthCheck filter in the Admin Console in Openfire 3.6.0a and earlier allows remote attackers to bypass authentication and access the admin interface via a .. (dot dot) in a URI that matches the Exclude-Strings list, as demonstrated by a /setup/setup-/.. sequence in a URI."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad de salto de directorio en el filtro AuthCheck de la Consola de administraci\u00f3n de Openfire 3.6.0a y anteriores permite a atacantes remotos eludir el proceso de autenticaci\u00f3n y acceder a la pantalla de administraci\u00f3n a trav\u00e9s de un .. (punto punto) en una URI que coincida con la lista de cadenas excluidas (Exclude-Strings), como lo demuestra una secuencia  /setup/setup-/.. en una URI."
    }
  ],
  "id": "CVE-2008-6508",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-03-23T20:00:00.203",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://osvdb.org/49663"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/32478"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.andreas-kurtz.de/archives/63"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.igniterealtime.org/builds/openfire/docs/latest/changelog.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.igniterealtime.org/issues/browse/JM-1489"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/498162/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/32189"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2008/3061"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46488"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/7075"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://osvdb.org/49663"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/32478"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.andreas-kurtz.de/archives/63"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.igniterealtime.org/builds/openfire/docs/latest/changelog.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.igniterealtime.org/issues/browse/JM-1489"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/498162/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/32189"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2008/3061"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/46488"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/7075"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-22"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.