Directory Permissions Vulnerability in MIT krb5-appl by MIT
CVE-2019-25018

7.5HIGH

Key Information:

Vendor: Mit
Status: Krb5-appl
Vendor: CVE Published:; 2 February 2021

What is CVE-2019-25018?

A vulnerability exists in the rcp client of MIT krb5-appl versions up to 1.0.3, where malicious servers can exploit filename manipulations, such as using a single dot or leaving the filename empty, to bypass intended access restrictions. This can result in unauthorized modifications to the target directory's permissions on the client side. Although the affected version is shipped by some Linux distributions, it is important to note that MIT krb5-appl has not received upstream support, and the vulnerable code was removed from the official MIT Kerberos 5 product long before this vulnerability was identified.

References

https://bugzilla.suse.com/show_bug.cgi?id=1131109

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 2, 2021
Vulnerability Reserved
Feb 2, 2021

CVE-2019-25018 Data

JSON

Mit

What is CVE-2019-25018?

References

CVSS V3.1

Timeline