CVE-2013-2182
Notifications for a CVE
Stay informed of any changes for a specific CVE.
CVE Descriptions
The Mandril security plugin in Monkey HTTP Daemon (monkeyd) before 1.5.0 allows remote attackers to bypass access restrictions via a crafted URI, as demonstrated by an encoded forward slash.
CVE Informations
Related Weaknesses
| Weakness Name | Source | |
|---|---|---|
| Category : Permissions, Privileges, and Access Controls Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control. |
Metrics
| Metrics | Score | Severity | CVSS Vector | Source |
|---|---|---|---|---|
| V2 | 5.8 | AV:N/AC:M/Au:N/C:P/I:P/A:N | nvd@nist.gov |
EPSS
EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.
EPSS Score
The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.
EPSS Percentile
The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.
Exploit information
Exploit Database EDB-ID : 38587
Publication date : 2013-06-13 22h00 +00:00
Author : felipensp
EDB Verified : Yes
source: https://www.securityfocus.com/bid/60569/info
The Mandril Security plugin for Monkey HTTP Daemon is prone to a security-bypass vulnerability.
An attacker can exploit this issue to bypass certain security restrictions and perform unauthorized actions, which may aid in launching further attacks
http://www.example.com/%2ftest/
Products Mentioned
Configuraton 0
Monkey-project>>Monkey >> Version To (including) 1.4.0
- Monkey-project>>Monkey >> Version - (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.1.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.1.4 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.5.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.5.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.5.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.6.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.6.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.6.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.6.3 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.7.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.7.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.7.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.3 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.4 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.4 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.8.5 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.9.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.9.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.9.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.9.3 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.10.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.10.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.10.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.10.3 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.11.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.11.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.12.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.12.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.12.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.13.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.13.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.13.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.20.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.20.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.20.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.20.3 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.21.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.30.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.31.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.32.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 0.33.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.0.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.0.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.1.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.1.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.2.0 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.2.1 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.2.2 (Open CPE detail)
- Monkey-project>>Monkey >> Version 1.4.0 (Open CPE detail)
References
https://github.com/monkey/monkey/commit/15f72c1ee5e0afad20232bdf0fcecab8d62a5d89
Tags : x_refsource_CONFIRM
Tags : x_refsource_CONFIRM
2025©
tesweb SA
