CVE-2012-10024

Public Exploit

XBMC ≤ 11.0 Web Server Path Traversal

Description

XBMC version 11, including builds up to the 2012-11-04 nightly release, contains a path traversal vulnerability in its embedded HTTP server. When accessed via HTTP Basic Authentication, the server fails to properly sanitize URI input, allowing authenticated users to request files outside the intended document root. An attacker can exploit this flaw to read arbitrary files from the host filesystem, including sensitive configuration or credential files.

References

Link	Tags
https://www.ioactive.com/wp-content/uploads/pdfs/Security_Advisory_XBMC.pdf	exploit technical description
https://raw.githubusercontent.com/rapid7/metasploit-framework/master/modules/auxiliary/gather/xbmc_traversal.rb	exploit
https://github.com/xbmc/xbmc/commit/bdff099c024521941cb0956fe01d99ab52a65335	patch
https://github.com/xbmc/xbmc	product
https://www.vulncheck.com/advisories/xbmc-web-server-path-traversal	third party advisory

Frequently Asked Questions

What is the severity of CVE-2012-10024?: CVE-2012-10024 has been scored as a high severity vulnerability.
How to fix CVE-2012-10024?: To fix CVE-2012-10024, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2012-10024 being actively exploited in the wild?: It is possible that CVE-2012-10024 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2012-10024?: CVE-2012-10024 affects XBMC Media Center.

Description

Category

CWE-22 – Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

References

Frequently Asked Questions