CVE-2011-1569
Description
download.aspx in Douran Portal 3.9.7.8 allows remote attackers to obtain source code of arbitrary files under the web root via (1) a trailing ".", (2) a trailing space, or (3) mixed case in the FileNameAttach parameter.
Predictions
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
No mitigations published for this CVE yet.
The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ if you've already worked around this in production โ publish your fix to the community-verified tier.
โ Propose a mitigation on Community โ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here withsource_tier=community-verified.
Exploits
Public proof-of-concept code below. AS-IS, for defenders and authorised testing only.
Exploit-DB
Douran 3.9.7.8 - File Download/Source Code Disclosure
Application impact
| Vendor | Product | Versions | Fixed |
|---|---|---|---|
| douran | portal | 3.9.7.8 | |
References
- http://osvdb.org/71250
- http://secunia.com/advisories/43792
- http://securityreason.com/securityalert/8180
- http://soroush.secproject.com/blog/2011/01/unrestricted_file_download_v1_0/
- http://www.exploit-db.com/exploits/17011
- http://www.securityfocus.com/archive/1/517085/100/0/threaded
- http://www.securityfocus.com/bid/46927
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66177
- http://osvdb.org/71250
- http://secunia.com/advisories/43792
- http://securityreason.com/securityalert/8180
- http://soroush.secproject.com/blog/2011/01/unrestricted_file_download_v1_0/
- http://www.exploit-db.com/exploits/17011
- http://www.securityfocus.com/archive/1/517085/100/0/threaded
- http://www.securityfocus.com/bid/46927
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66177
CWEs
CWE-200
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.