CVE-2010-3692: Path Traversal
First published: Thu Oct 07 2010(Updated: )
Directory traversal vulnerability in the callback function in client.php in phpCAS before 1.1.3, when proxy mode is enabled, allows remote attackers to create or overwrite arbitrary files via directory traversal sequences in a Proxy Granting Ticket IOU (PGTiou) parameter.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apereo phpCAS | <=1.1.2 | |
| Apereo phpCAS | =0.2 | |
| Apereo phpCAS | =0.3 | |
| Apereo phpCAS | =0.3.1 | |
| Apereo phpCAS | =0.3.2 | |
| Apereo phpCAS | =0.4 | |
| Apereo phpCAS | =0.4.1 | |
| Apereo phpCAS | =0.4.8 | |
| Apereo phpCAS | =0.4.9 | |
| Apereo phpCAS | =0.4.10 | |
| Apereo phpCAS | =0.4.11 | |
| Apereo phpCAS | =0.4.12 | |
| Apereo phpCAS | =0.4.13 | |
| Apereo phpCAS | =0.4.14 | |
| Apereo phpCAS | =0.4.15 | |
| Apereo phpCAS | =0.4.16 | |
| Apereo phpCAS | =0.4.17 | |
| Apereo phpCAS | =0.4.18 | |
| Apereo phpCAS | =0.4.19 | |
| Apereo phpCAS | =0.4.20 | |
| Apereo phpCAS | =0.4.21 | |
| Apereo phpCAS | =0.4.22 | |
| Apereo phpCAS | =0.4.23 | |
| Apereo phpCAS | =0.5.0 | |
| Apereo phpCAS | =0.5.1 | |
| Apereo phpCAS | =0.6.0 | |
| Apereo phpCAS | =1.0.0 | |
| Apereo phpCAS | =1.0.1 | |
| Apereo phpCAS | =1.1.0 | |
| Apereo phpCAS | =1.1.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.openwall.com/lists/oss-security/2010/10/01/5
- https://issues.jasig.org/browse/PHPCAS-80
- http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=495542#82
- http://www.openwall.com/lists/oss-security/2010/10/01/2
- https://developer.jasig.org/source/changelog/jasigsvn?cs=21538
- http://www.openwall.com/lists/oss-security/2010/09/29/6
- http://www.vupen.com/english/advisories/2010/2705
- http://secunia.com/advisories/41878
- http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049602.html
- http://lists.fedoraproject.org/pipermail/package-announce/2010-October/049600.html
- http://www.securityfocus.com/bid/43585
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050415.html
- https://forge.indepnet.net/projects/glpi/repository/revisions/12601
- http://secunia.com/advisories/42149
- http://www.vupen.com/english/advisories/2010/2909
- http://secunia.com/advisories/42184
- http://lists.fedoraproject.org/pipermail/package-announce/2010-November/050428.html
- http://www.debian.org/security/2011/dsa-2172
- http://www.vupen.com/english/advisories/2011/0456
- http://secunia.com/advisories/43427
Frequently Asked Questions
What is the severity of CVE-2010-3692?
CVE-2010-3692 is considered a medium severity vulnerability due to the potential for remote file manipulation.
How do I fix CVE-2010-3692?
To fix CVE-2010-3692, upgrade phpCAS to version 1.1.3 or later where the vulnerability has been addressed.
Who is affected by CVE-2010-3692?
CVE-2010-3692 affects all versions of phpCAS prior to 1.1.3, particularly when proxy mode is enabled.
What type of vulnerability is CVE-2010-3692?
CVE-2010-3692 is a directory traversal vulnerability that allows unauthorized file creation or overwriting.
Can CVE-2010-3692 be exploited remotely?
Yes, CVE-2010-3692 can be exploited remotely by attackers sending crafted requests with directory traversal sequences.
- agent/references
- agent/author
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/severity
- agent/weakness
- agent/description
- vendor/apereo
- canonical/apereo phpcas
- version/apereo phpcas/1.1.2
- version/apereo phpcas/0.2
- version/apereo phpcas/0.3
- version/apereo phpcas/0.3.1
- version/apereo phpcas/0.3.2
- version/apereo phpcas/0.4
- version/apereo phpcas/0.4.1
- version/apereo phpcas/0.4.8
- version/apereo phpcas/0.4.9
- version/apereo phpcas/0.4.10
- version/apereo phpcas/0.4.11
- version/apereo phpcas/0.4.12
- version/apereo phpcas/0.4.13
- version/apereo phpcas/0.4.14
- version/apereo phpcas/0.4.15
- version/apereo phpcas/0.4.16
- version/apereo phpcas/0.4.17
- version/apereo phpcas/0.4.18
- version/apereo phpcas/0.4.19
- version/apereo phpcas/0.4.20
- version/apereo phpcas/0.4.21
- version/apereo phpcas/0.4.22
- version/apereo phpcas/0.4.23
- version/apereo phpcas/0.5.0
- version/apereo phpcas/0.5.1
- version/apereo phpcas/0.6.0
- version/apereo phpcas/1.0.0
- version/apereo phpcas/1.0.1
- version/apereo phpcas/1.1.0
- version/apereo phpcas/1.1.1