Bugzilla will be upgraded to version 5.0 on a still to be determined date in the near future. The original upgrade date has been delayed.
First Last Prev Next    This bug is not in your last search results.
Bug 696082 - (CVE-2011-0705) CVE-2011-0705 Python: SimpleHTTPServer class directory traversal flaw
CVE-2011-0705 Python: SimpleHTTPServer class directory traversal flaw
Status: CLOSED NOTABUG
Product: Security Response
Classification: Other
Component: vulnerability (Show other bugs)
unspecified
All Linux
low Severity low
: ---
: ---
Assigned To: Red Hat Product Security
public=20110211,reported=20110125,sou...
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2011-04-13 04:41 EDT by Huzaifa S. Sidhpurwala
Modified: 2018-09-01 15:50 EDT (History)
3 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2011-07-01 02:06:02 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

  None (edit)
Description Huzaifa S. Sidhpurwala 2011-04-13 04:41:13 EDT 
Python's SimpleHTTPServer class is a simple HTTP server, documented as
serving up the content of the pwd and below readonly via GET and HEAD
commands:

$ python -m SimpleHTTPServer
Serving HTTP on 0.0.0.0 port 8000 ...

However, by inserting "../" path fragments within the path section of
the URL, it's possible to traverse other directories within the
filesystem.

For example:

lynx localhost:8000/../../../../..

shows 5 directories above in the directory structure.

We can also browse /proc and /sys on this example using:

lynx localhost:8000/../../../../../../../../proc
lynx localhost:8000/../../../../../../../../sys

(by browsing to find the correct number of ".." entries to locate the
root directory).

http://bugs.python.org/issue11197
Comment 2 Huzaifa S. Sidhpurwala 2011-07-01 02:06:02 EDT 
http://bugs.python.org/issue11197#msg139056

suggests that this bug cannot be reproduced. 
Also SimpleHTTPServer is supposed to serve contents from the current directory and any directories below it.

Closing this issue.
Comment 6 Huzaifa S. Sidhpurwala 2011-07-01 04:31:59 EDT 
This is NOT a security issue, in fact this is not a bug at all. lynx was used incorrectly. This resulted in files being viewed from the local system and not from the web.

Reference:
http://bugs.python.org/issue11197#msg139554
Comment 7 Salvatore Bonaccorso 2018-09-01 15:50:13 EDT 
I asked MITRE (via the http://cveform.mitre.org/) to REJECT the CVE.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.