CVE-2011-5012 - OpenCVE

Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 before 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 before 15.4.1.327, Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186, and Reflection 14.1 SP1 before 14.1.1.206, allows remote FTP servers to execute arbitrary code via a long directory name in a response to a LIST command.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:L/Au:N/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Attachmate	Reflection Reflection 2008 Reflection 2008r1 Reflection 2008r2 Reflection 2011r1

Configuration 1 [-]

OR	cpe:2.3:a:attachmate:reflection:7.2:sp1:windows_client:::::*
	cpe:2.3:a:attachmate:reflection:14.1:sp1::::::
	cpe:2.3:a:attachmate:reflection_2008::::::::
	cpe:2.3:a:attachmate:reflection_2008r1:sp1:::::::*
	cpe:2.3:a:attachmate:reflection_2008r2::::::::
	cpe:2.3:a:attachmate:reflection_2011r1::::::::

No data.

References

Link	Providers
http://secunia.com/advisories/46879
http://support.attachmate.com/techdocs/1708.html
http://support.attachmate.com/techdocs/2288.html
http://support.attachmate.com/techdocs/2502.html
http://www.exploit-db.com/exploits/18119
http://www.osvdb.org/77189
http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29
http://www.securitytracker.com/id?1026340
https://exchange.xforce.ibmcloud.com/vulnerabilities/71330

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2011-12-25T01:00:00

Updated: 2024-08-07T00:23:39.400Z

Reserved: 2011-12-24T00:00:00

Link: CVE-2011-5012

Vulnrichment

No data.

NVD

Status : Modified

Published: 2011-12-25T01:55:05.117

Modified: 2017-08-29T01:30:38.757

Link: CVE-2011-5012

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-11-16T00:00:00", "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 before 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 before 15.4.1.327, Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186, and Reflection 14.1 SP1 before 14.1.1.206, allows remote FTP servers to execute arbitrary code via a long directory name in a response to a LIST command."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://support.attachmate.com/techdocs/1708.html"}, {"name": "18119", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "http://www.exploit-db.com/exploits/18119"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.attachmate.com/techdocs/2502.html"}, {"name": "46879", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/46879"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://support.attachmate.com/techdocs/2288.html"}, {"name": "77189", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/77189"}, {"name": "1026340", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1026340"}, {"name": "attachmate-reflection-list-bo(71330)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71330"}, {"tags": ["x_refsource_MISC"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2011-5012", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 before 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 before 15.4.1.327, Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186, and Reflection 14.1 SP1 before 14.1.1.206, allows remote FTP servers to execute arbitrary code via a long directory name in a response to a LIST command."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://support.attachmate.com/techdocs/1708.html", "refsource": "CONFIRM", "url": "http://support.attachmate.com/techdocs/1708.html"}, {"name": "18119", "refsource": "EXPLOIT-DB", "url": "http://www.exploit-db.com/exploits/18119"}, {"name": "http://support.attachmate.com/techdocs/2502.html", "refsource": "CONFIRM", "url": "http://support.attachmate.com/techdocs/2502.html"}, {"name": "46879", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/46879"}, {"name": "http://support.attachmate.com/techdocs/2288.html", "refsource": "CONFIRM", "url": "http://support.attachmate.com/techdocs/2288.html"}, {"name": "77189", "refsource": "OSVDB", "url": "http://www.osvdb.org/77189"}, {"name": "1026340", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1026340"}, {"name": "attachmate-reflection-list-bo(71330)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71330"}, {"name": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29", "refsource": "MISC", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:23:39.400Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.attachmate.com/techdocs/1708.html"}, {"name": "18119", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "http://www.exploit-db.com/exploits/18119"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.attachmate.com/techdocs/2502.html"}, {"name": "46879", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/46879"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://support.attachmate.com/techdocs/2288.html"}, {"name": "77189", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://www.osvdb.org/77189"}, {"name": "1026340", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id?1026340"}, {"name": "attachmate-reflection-list-bo(71330)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71330"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2011-5012", "datePublished": "2011-12-25T01:00:00", "dateReserved": "2011-12-24T00:00:00", "dateUpdated": "2024-08-07T00:23:39.400Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:attachmate:reflection:7.2:sp1:windows_client:*:*:*:*:*", "matchCriteriaId": "ECE5D7B6-F9E0-41E4-8DC8-27FAF06C4D32", "vulnerable": true}, {"criteria": "cpe:2.3:a:attachmate:reflection:14.1:sp1:*:*:*:*:*:*", "matchCriteriaId": "7FB0BF0F-3628-4064-BF1A-804473663F24", "vulnerable": true}, {"criteria": "cpe:2.3:a:attachmate:reflection_2008:*:*:*:*:*:*:*:*", "matchCriteriaId": "44CA598D-78FA-4B68-AE2D-E952F910F63B", "vulnerable": true}, {"criteria": "cpe:2.3:a:attachmate:reflection_2008r1:sp1:*:*:*:*:*:*:*", "matchCriteriaId": "28D713CF-F6BA-4445-BABD-C89590DB81AB", "vulnerable": true}, {"criteria": "cpe:2.3:a:attachmate:reflection_2008r2:*:*:*:*:*:*:*:*", "matchCriteriaId": "6857E337-F26C-4924-9523-71857EB93BC0", "vulnerable": true}, {"criteria": "cpe:2.3:a:attachmate:reflection_2011r1:*:*:*:*:*:*:*:*", "matchCriteriaId": "2221685E-51DE-4BB0-A91C-B8F92FAEA7CA", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Heap-based buffer overflow in the Reflection FTP Client (rftpcom.dll 7.2.0.106 and possibly other versions), as used in Attachmate Reflection 2008, Reflection 2011 R1 before 15.3.2.569 and R1 SP1 before, Reflection 2011 R2 before 15.4.1.327, Reflection Windows Client 7.2 SP1 before hotfix 7.2.1186, and Reflection 14.1 SP1 before 14.1.1.206, allows remote FTP servers to execute arbitrary code via a long directory name in a response to a LIST command."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en la regi\u00f3n heap de la memoria en Reflection FTP Client (la biblioteca rftpcom.dll versi\u00f3n 7.2.0.106 y posiblemente otras versiones), como es usado en Reflection 2008, Reflection 2011 versi\u00f3n R1 anterior a 15.3.2.569 y anterior a versi\u00f3n R1 SP1, Reflection 2011 versi\u00f3n R2 anterior a 15.4.1.327, Reflection Windows Client versi\u00f3n 7.2 SP1 anterior a hotfix 7.2.1186, y Reflection versi\u00f3n 14.1 SP1 anterior a 14.1.1.206 de Attachmate, permite a servidores FTP remotos ejecutar c\u00f3digo arbitrario por medio de un nombre de directorio largo en una respuesta a un comando LIST."}], "id": "CVE-2011-5012", "lastModified": "2017-08-29T01:30:38.757", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-12-25T01:55:05.117", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/46879"}, {"source": "cve@mitre.org", "url": "http://support.attachmate.com/techdocs/1708.html"}, {"source": "cve@mitre.org", "url": "http://support.attachmate.com/techdocs/2288.html"}, {"source": "cve@mitre.org", "url": "http://support.attachmate.com/techdocs/2502.html"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.exploit-db.com/exploits/18119"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/77189"}, {"source": "cve@mitre.org", "url": "http://www.protekresearchlab.com/index.php?option=com_content&view=article&id=29&Itemid=29"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1026340"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/71330"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}