CVE-2008-5518

Apache Geronimo Application Server <2.1.3 - Path Traversal

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2008-5518. PoCs published by DSecRG.

AI-analyzed exploit summary This is an advisory detailing directory traversal vulnerabilities in Apache Geronimo Application Server versions 2.1 to 2.1.3, allowing remote attackers to upload files to arbitrary directories on Windows servers. The advisory describes vulnerable parameters in multiple portlets and provides mitigation steps.

Description

Multiple directory traversal vulnerabilities in the web administration console in Apache Geronimo Application Server 2.1 through 2.1.3 on Windows allow remote attackers to upload files to arbitrary directories via directory traversal sequences in the (1) group, (2) artifact, (3) version, or (4) fileType parameter to console/portal//Services/Repository (aka the Services/Repository portlet); the (5) createDB parameter to console/portal/Embedded DB/DB Manager (aka the Embedded DB/DB Manager portlet); or the (6) filename parameter to the createKeystore script in the Security/Keystores portlet.

Exploits (1)

exploitdb WRITEUP VERIFIED

by DSecRG · textremotemultiple

https://www.exploit-db.com/exploits/8458

View Code ZIP pw:eip

This is an advisory detailing directory traversal vulnerabilities in Apache Geronimo Application Server versions 2.1 to 2.1.3, allowing remote attackers to upload files to arbitrary directories on Windows servers. The advisory describes vulnerable parameters in multiple portlets and provides mitigation steps.

Classification

Writeup 100%

Attack Type

Other

Complexity

Trivial

Reliability

Theoretical

Target: Apache Geronimo Application Server 2.1 - 2.1.3

No auth needed

Prerequisites: Access to the vulnerable Geronimo server console

MITRE ATT&CK