PT-2020-17309 · Flamingoim · Flamingo
Marckweio
·
Published
2020-12-26
·
Updated
2020-12-30
·
CVE-2020-35284
CVSS v3.1
7.5
High
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Flamingo (aka FlamingoIM) through 2020-09-29
Description
The issue allows for ../ directory traversal. This is possible because the only unpredictable part of a file-transfer request, an MD5 computation, occurs on the client side. Since the product's source code is available, the computation details can be easily determined, enabling the traversal.
Recommendations
For Flamingo (aka FlamingoIM) through 2020-09-29, consider restricting file-transfer requests until a patch is available. As a temporary workaround, avoid using the MD5 computation for file-transfer requests. At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Exploit
Path traversal
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Flamingo