CVE-2012-6069 - Vulnerability Details - OpenCVE

Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
3s-software	Codesys Runtime System

Configuration 1 [-]

cpe:2.3:a:3s-software:codesys_runtime_system:2.4.0:*:*:*:*:*:*:*

Configuration 2 [-]

OR	cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.8:::::::*
	cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.35:::::::*
	cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.36:::::::*
	cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.37:::::::*

No data.

References

Link	Providers
http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01
http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html
http://www.digitalbond.com/tools/basecamp/3s-codesys/
http://www.securityfocus.com/bid/56300
http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf

History

No history.

MITRE

Status: PUBLISHED

Assigner: icscert

Published: 2013-01-21T21:00:00

Updated: 2024-08-06T21:21:28.402Z

Reserved: 2012-12-05T00:00:00

Link: CVE-2012-6069

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2013-01-21T21:55:01.150

Modified: 2025-04-11T00:51:21.963

Link: CVE-2012-6069

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-10-31T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2015-05-12T18:57:00", "orgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "shortName": "icscert"}, "references": [{"name": "56300", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/56300"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html"}, {"tags": ["x_refsource_MISC"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01"}, {"tags": ["x_refsource_MISC"], "url": "http://www.digitalbond.com/tools/basecamp/3s-codesys/"}, {"tags": ["x_refsource_MISC"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "ics-cert@hq.dhs.gov", "ID": "CVE-2012-6069", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "56300", "refsource": "BID", "url": "http://www.securityfocus.com/bid/56300"}, {"name": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html", "refsource": "CONFIRM", "url": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html"}, {"name": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01", "refsource": "MISC", "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01"}, {"name": "http://www.digitalbond.com/tools/basecamp/3s-codesys/", "refsource": "MISC", "url": "http://www.digitalbond.com/tools/basecamp/3s-codesys/"}, {"name": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf", "refsource": "MISC", "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T21:21:28.402Z"}, "title": "CVE Program Container", "references": [{"name": "56300", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/56300"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.digitalbond.com/tools/basecamp/3s-codesys/"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf"}]}]}, "cveMetadata": {"assignerOrgId": "7d14cffa-0d7d-4270-9dc0-52cabd5a23a6", "assignerShortName": "icscert", "cveId": "CVE-2012-6069", "datePublished": "2013-01-21T21:00:00", "dateReserved": "2012-12-05T00:00:00", "dateUpdated": "2024-08-06T21:21:28.402Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:3s-software:codesys_runtime_system:2.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "89253C44-34F0-457C-9EEE-E7028F737E02", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.8:*:*:*:*:*:*:*", "matchCriteriaId": "CFAB8128-4A70-44CA-A4D3-C859010C8BFF", "vulnerable": true}, {"criteria": "cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.35:*:*:*:*:*:*:*", "matchCriteriaId": "0B99BA40-647D-4203-A003-CAEEF776EF77", "vulnerable": true}, {"criteria": "cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.36:*:*:*:*:*:*:*", "matchCriteriaId": "50443443-14B4-4245-BBE3-C5E451739EF0", "vulnerable": true}, {"criteria": "cpe:2.3:a:3s-software:codesys_runtime_system:2.3.9.37:*:*:*:*:*:*:*", "matchCriteriaId": "44C690B5-EE5B-4504-B40D-879F757C8029", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the Runtime Toolkit in CODESYS Runtime System 2.3.x and 2.4.x allows remote attackers to read, overwrite, or create arbitrary files via a .. (dot dot) in a request to the TCP listener service."}, {"lang": "es", "value": "Vulnerabilidad de salto de directorio en el Runtime Toolkit de CODESYS Runtime System v2.3.x y v2.4.x que permite a atacantes remotos leer, sobreescribir, o crear ficheros a trav\u00e9s de .. (punto punto) en una solicitud al servicio de escucha TCP."}], "id": "CVE-2012-6069", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-01-21T21:55:01.150", "references": [{"source": "ics-cert@hq.dhs.gov", "tags": ["US Government Resource"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["Vendor Advisory"], "url": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html"}, {"source": "ics-cert@hq.dhs.gov", "url": "http://www.digitalbond.com/tools/basecamp/3s-codesys/"}, {"source": "ics-cert@hq.dhs.gov", "url": "http://www.securityfocus.com/bid/56300"}, {"source": "ics-cert@hq.dhs.gov", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://ics-cert.us-cert.gov/advisories/ICSA-14-084-01"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.codesys.com/news-events/press-releases/detail/article/sicherheitsluecke-in-codesys-v23-laufzeitsystem.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.digitalbond.com/tools/basecamp/3s-codesys/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/56300"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.us-cert.gov/control_systems/pdf/ICSA-13-011-01.pdf"}], "sourceIdentifier": "ics-cert@hq.dhs.gov", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}