CVE-2008-4437

Bugzilla < 2.22.5 and 3.x < 3.0.5 - Path Traversal via XML Import Data Element

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-4437. PoCs published by ilja van sprundel.

AI-analyzed exploit summary This exploit demonstrates a directory traversal vulnerability in Bugzilla, allowing an attacker to read arbitrary local files by manipulating the 'data' field with relative path traversal sequences. The vulnerability stems from insufficient input sanitization in affected Bugzilla versions.

Description

Directory traversal vulnerability in importxml.pl in Bugzilla before 2.22.5, and 3.x before 3.0.5, when --attach_path is enabled, allows remote attackers to read arbitrary files via an XML file with a .. (dot dot) in the data element.

Exploits (1)

exploitdb WORKING POC VERIFIED

by ilja van sprundel · xmlremotelinux

https://www.exploit-db.com/exploits/32228

View Code ZIP pw:eip

This exploit demonstrates a directory traversal vulnerability in Bugzilla, allowing an attacker to read arbitrary local files by manipulating the 'data' field with relative path traversal sequences. The vulnerability stems from insufficient input sanitization in affected Bugzilla versions.

Classification

Working Poc 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Bugzilla 2.22.1 through 2.22.4, 2.23.3 and later

No auth needed

Prerequisites: Access to a vulnerable Bugzilla instance

MITRE ATT&CK