CVE-2014-9707

EmbedThis GoAhead <3.4.1 - Path Traversal

Title source: llm

Description

EmbedThis GoAhead 3.0.0 through 3.4.1 does not properly handle path segments starting with a . (dot), which allows remote attackers to conduct directory traversal attacks, cause a denial of service (heap-based buffer overflow and crash), or possibly execute arbitrary code via a crafted URI.

Exploits (1)

metasploit WORKING POC

by Matthew Daley · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/http/goahead_traversal.rb

View Code ZIP pw:eip

References (6)

[Exploit] http://packetstormsecurity.com/files/131156/GoAhead-3.4.1-Heap-Overflow-Traversal.html

[Exploit] http://seclists.org/fulldisclosure/2015/Mar/157

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/535027/100/0/threaded

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1032208

[Patch] https://github.com/embedthis/goahead/commit/eed4a7d177bf94a54c7b06ccce88507fbd76fb77

[Issue Tracking] https://github.com/embedthis/goahead/issues/106

Scores

EPSS 0.6059

EPSS Percentile 98.3%

Details

CWE

CWE-17

Status published

Products (8)

embedthis/goahead 3.0.0

embedthis/goahead 3.3.1

embedthis/goahead 3.3.2

embedthis/goahead 3.3.3

embedthis/goahead 3.3.4

embedthis/goahead 3.3.5

embedthis/goahead 3.3.6

embedthis/goahead 3.4.0

Published Mar 31, 2015

Tracked Since Feb 18, 2026