CVE-2005-2877

TWiki <02-Sep-2004 - RCE

Title source: llm

Description

The history (revision control) function in TWiki 02-Sep-2004 and earlier allows remote attackers to execute arbitrary code via shell metacharacters, as demonstrated via the rev parameter to TWikiUsers.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubywebappsphp

https://www.exploit-db.com/exploits/16892

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by JChristophFuchs · textwebappsphp

https://www.exploit-db.com/exploits/26302

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by B4dP4nd4 · textwebappsphp

https://www.exploit-db.com/exploits/26260

View Code ZIP pw:eip

metasploit WORKING POC EXCELLENT

by B4dP4nd4, jduck · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/unix/webapp/twiki_history.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=112680475417550&w=2

[Patch, Vendor Advisory] http://twiki.org/cgi-bin/view/Codev/SecurityAlertExecuteCommandsWithRev

[Patch, Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/757181

[Exploit, Patch] http://www.securityfocus.com/bid/14834

Scores

EPSS 0.8400

EPSS Percentile 99.3%

Details

Status published

Products (5)

twiki/twiki 2000-12-01

twiki/twiki 2001-12-01

twiki/twiki 2003-02-01

twiki/twiki 2004-09-01

twiki/twiki 2004-09-02

Published Sep 16, 2005

Tracked Since Feb 18, 2026