CVE-2014-4663

TimThumb 2.8.13 and WordThumb 1.07, when Webshot (aka Webshots) is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the src parameter.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://packetstormsecurity.com/files/127192/TimThumb-2.8.13-Remote-Code-Execution.html
http://seclists.org/fulldisclosure/2014/Jul/4
http://seclists.org/fulldisclosure/2014/Jun/117
http://seclists.org/oss-sec/2014/q2/689
http://secunia.com/advisories/59558
http://www.exploit-db.com/exploits/33851	Exploit
https://code.google.com/p/timthumb/issues/detail?id=485
https://code.google.com/p/timthumb/source/detail?r=219

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:binarymoon:timthumb:2.8.13:::::::*
	cpe:2.3:a:binarymoon:wordthumb:1.07:::::::*

History

No history.

Information

Published : 2014-07-15 14:55

Updated : 2024-02-04 18:35

NVD link : CVE-2014-4663

Mitre link : CVE-2014-4663

CVE.ORG link : CVE-2014-4663

JSON object : View

Products Affected

binarymoon

timthumb
wordthumb

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2014-4663", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2014-07-15T14:55:10.730", "references": [{"url": "http://packetstormsecurity.com/files/127192/TimThumb-2.8.13-Remote-Code-Execution.html", "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2014/Jul/4", "source": "cve@mitre.org"}, {"url": "http://seclists.org/fulldisclosure/2014/Jun/117", "source": "cve@mitre.org"}, {"url": "http://seclists.org/oss-sec/2014/q2/689", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/59558", "source": "cve@mitre.org"}, {"url": "http://www.exploit-db.com/exploits/33851", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://code.google.com/p/timthumb/issues/detail?id=485", "source": "cve@mitre.org"}, {"url": "https://code.google.com/p/timthumb/source/detail?r=219", "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "TimThumb 2.8.13 and WordThumb 1.07, when Webshot (aka Webshots) is enabled, allows remote attackers to execute arbitrary commands via shell metacharacters in the src parameter."}, {"lang": "es", "value": "TimThumb 2.8.13 y WordThumb 1.07, cuando Webshot (tambi\u00e9n conocido como Webshots) est\u00e1 habilitado, permite a atacantes remotos ejecutar comandos arbitrarios a trav\u00e9s de metacaracteres de shell en el par\u00e1metro src."}], "lastModified": "2014-07-15T19:25:46.270", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:binarymoon:timthumb:2.8.13:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C38BB43F-2AF7-4A42-A127-C2DC580C70FF"}, {"criteria": "cpe:2.3:a:binarymoon:wordthumb:1.07:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "34E9C9E7-643A-4EA5-AA00-7A1C8B2880A7"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}