QwikSec

Security Database

CVE

CWE

Training

CVE-2020-15121

Published: Jul 20, 2020

Modified: Aug 4, 2024

PUBLISHED

CVSS v3.1

7.4

HIGH

Description

In radare2 before version 4.5.0, malformed PDB file names in the PDB server path cause shell injection. To trigger the problem it's required to open the executable in radare2 and run idpd to trigger the download. The shell code will execute, and will create a file called pwned in the current directory.

Vendor	Product	Versions
radareorg	radare2	affected `< 4.5.0`

Weaknesses (CWE)

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Changed

Confidentiality

None

Integrity

High

Availability

None

References

https://github.com/radareorg/radare2/security/advisories/GHSA-r552-vp94-9358

x_refsource_CONFIRM

https://github.com/radareorg/radare2/issues/16945

x_refsource_MISC

https://github.com/radareorg/radare2/pull/16966

x_refsource_MISC

https://github.com/radareorg/radare2/commit/04edfa82c1f3fa2bc3621ccdad2f93bdbf00e4f9

x_refsource_MISC

FEDORA-2020-d5b33b6e6c

vendor-advisory

x_refsource_FEDORA

FEDORA-2020-aa51efe207

vendor-advisory

x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.