CVE-2007-6612 - Vulnerability Details - OpenCVE

Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (".%252e").

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mongrel	Mongrel

Configuration 1 [-]

OR	cpe:2.3:a:mongrel:mongrel:1.0.4:::::::*
	cpe:2.3:a:mongrel:mongrel:1.1.1:::::::*
	cpe:2.3:a:mongrel:mongrel:1.1.2:::::::*

No data.

References

Link	Providers
http://lists.apple.com/archives/security-announce/2008//May/msg00001.html
http://mongrel.rubyforge.org/news.html
http://osvdb.org/39866
http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html
http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html
http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html
http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html
http://secunia.com/advisories/28323
http://secunia.com/advisories/30430
http://www.securityfocus.com/bid/27133
http://www.us-cert.gov/cas/techalerts/TA08-150A.html
http://www.vupen.com/english/advisories/2008/1697

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-01-03T22:00:00.000Z

Updated: 2024-08-07T16:11:06.079Z

Reserved: 2008-01-03T00:00:00.000Z

Link: CVE-2007-6612

Vulnrichment

No data.

NVD

Status : Modified

Published: 2008-01-03T22:46:00.000

Modified: 2026-04-23T00:35:47.467

Link: CVE-2007-6612

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-12-28T00:00:00.000Z", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (\".%252e\")."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-01-09T10:00:00.000Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://mongrel.rubyforge.org/news.html"}, {"name": "27133", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/27133"}, {"name": "28323", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/28323"}, {"name": "39866", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/39866"}, {"name": "TA08-150A", "tags": ["third-party-advisory", "x_refsource_CERT"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-150A.html"}, {"name": "[Mongrel] 20071229 Regarding the 1.1.3 security release", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html"}, {"name": "30430", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30430"}, {"name": "APPLE-SA-2008-05-28", "tags": ["vendor-advisory", "x_refsource_APPLE"], "url": "http://lists.apple.com/archives/security-announce/2008//May/msg00001.html"}, {"name": "ADV-2008-1697", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1697"}, {"name": "[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2)", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html"}, {"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-6612", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (\".%252e\")."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "refsource": "MLIST", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html"}, {"name": "http://mongrel.rubyforge.org/news.html", "refsource": "CONFIRM", "url": "http://mongrel.rubyforge.org/news.html"}, {"name": "27133", "refsource": "BID", "url": "http://www.securityfocus.com/bid/27133"}, {"name": "28323", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/28323"}, {"name": "39866", "refsource": "OSVDB", "url": "http://osvdb.org/39866"}, {"name": "TA08-150A", "refsource": "CERT", "url": "http://www.us-cert.gov/cas/techalerts/TA08-150A.html"}, {"name": "[Mongrel] 20071229 Regarding the 1.1.3 security release", "refsource": "MLIST", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html"}, {"name": "30430", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30430"}, {"name": "APPLE-SA-2008-05-28", "refsource": "APPLE", "url": "http://lists.apple.com/archives/security-announce/2008//May/msg00001.html"}, {"name": "ADV-2008-1697", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1697"}, {"name": "[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2)", "refsource": "MLIST", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html"}, {"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "refsource": "MLIST", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:11:06.079Z"}, "title": "CVE Program Container", "references": [{"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://mongrel.rubyforge.org/news.html"}, {"name": "27133", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/27133"}, {"name": "28323", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/28323"}, {"name": "39866", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/39866"}, {"name": "TA08-150A", "tags": ["third-party-advisory", "x_refsource_CERT", "x_transferred"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-150A.html"}, {"name": "[Mongrel] 20071229 Regarding the 1.1.3 security release", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html"}, {"name": "30430", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/30430"}, {"name": "APPLE-SA-2008-05-28", "tags": ["vendor-advisory", "x_refsource_APPLE", "x_transferred"], "url": "http://lists.apple.com/archives/security-announce/2008//May/msg00001.html"}, {"name": "ADV-2008-1697", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/1697"}, {"name": "[Mongrel] [SECURITY] Must Fix This Now! (Re: Arbitrary system files readable in 1.0.4 - 1.1.2)", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html"}, {"name": "[Mongrel] 20071228 Arbitrary system files readable in 1.0.4 - 1.1.2", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-6612", "datePublished": "2008-01-03T22:00:00.000Z", "dateReserved": "2008-01-03T00:00:00.000Z", "dateUpdated": "2024-08-07T16:11:06.079Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mongrel:mongrel:1.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "564EACB0-F19D-418A-8FAC-C3EC2C280B4A", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongrel:mongrel:1.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "A294C0EA-8230-458E-8727-26A5A58EAF14", "vulnerable": true}, {"criteria": "cpe:2.3:a:mongrel:mongrel:1.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "E794ED51-4AC6-4E80-A7BB-1D0737E3424F", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in DirHandler (lib/mongrel/handlers.rb) in Mongrel 1.0.4 and 1.1.x before 1.1.3 allows remote attackers to read arbitrary files via an HTTP request containing double-encoded sequences (\".%252e\")."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en DirHandler (lib/mongrel/handlers.rb) de Mongrel 1.0.4 y 1.1.x versiones anteriores a 1.1.3 permite a atacantes remotos leer ficheros de su elecci\u00f3n mediante una petici\u00f3n HTTP conteniendo secuencias doblemente codificadas (\".%252e\")."}], "id": "CVE-2007-6612", "lastModified": "2026-04-23T00:35:47.467", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 6.4, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 4.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-01-03T22:46:00.000", "references": [{"source": "cve@mitre.org", "url": "http://lists.apple.com/archives/security-announce/2008//May/msg00001.html"}, {"source": "cve@mitre.org", "url": "http://mongrel.rubyforge.org/news.html"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/39866"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html"}, {"source": "cve@mitre.org", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html"}, {"source": "cve@mitre.org", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/28323"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/30430"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/27133"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-150A.html"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1697"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://lists.apple.com/archives/security-announce/2008//May/msg00001.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://mongrel.rubyforge.org/news.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/39866"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004733.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004736.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004742.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://rubyforge.org/pipermail/mongrel-users/2007-December/004743.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/28323"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://secunia.com/advisories/30430"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/27133"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/cas/techalerts/TA08-150A.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/1697"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}