CVE-2014-3225

Cobbler 2.4.x-2.6.x - Authenticated Path Traversal via Kickstart Field

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-3225. PoCs published by Dolev Farhi.

AI-analyzed exploit summary This is a writeup describing a Local File Inclusion (LFI) vulnerability in Cobbler versions 2.4.x to 2.6.x. The exploit involves creating a new profile in the Cobbler WebUI and setting the Kickstart value to a local file path (e.g., /etc/passwd), which is then displayed when viewing the Kickstart file.

Description

Absolute path traversal vulnerability in the web interface in Cobbler 2.4.x through 2.6.x allows remote authenticated users to read arbitrary files via the Kickstart field in a profile.

Exploits (1)

exploitdb WRITEUP

by Dolev Farhi · textwebappsphp

https://www.exploit-db.com/exploits/33252

View Code ZIP pw:eip

This is a writeup describing a Local File Inclusion (LFI) vulnerability in Cobbler versions 2.4.x to 2.6.x. The exploit involves creating a new profile in the Cobbler WebUI and setting the Kickstart value to a local file path (e.g., /etc/passwd), which is then displayed when viewing the Kickstart file.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Cobbler 2.4.x - 2.6.x

Auth required

Prerequisites: Access to Cobbler WebUI · Valid credentials to create a profile

devstral-2 · analyzed Feb 16, 2026 Full analysis →