CVE-2013-4885

Published: Oct 26, 2013Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

The http-domino-enum-passwords.nse script in NMap before 6.40, when domino-enum-passwords.idpath is set, allows remote servers to upload "arbitrarily named" files via a crafted FullName parameter in a response, as demonstrated using directory traversal sequences.

Affected (190)

Products: Nmap: Nmap · Opensuse: Opensuse

1 product

1 product

Configuration A

189 vulnerable

Vulnerable Software	Affected Versions
Nmap Nmap	Up to 6.25
Nmap Nmap	Version 2.05
Nmap Nmap	Version 2.06
Nmap Nmap	Version 2.07
Nmap Nmap	Version 2.08
Nmap Nmap	Version 2.09
Nmap Nmap	Version 2.10
Nmap Nmap	Version 2.11
Nmap Nmap	Version 2.12
Nmap Nmap	Version 2.1 beta1
Nmap Nmap	Version 2.2 beta2
Nmap Nmap	Version 2.2 beta3
Nmap Nmap	Version 2.2 beta4
Nmap Nmap	Version 2.3 beta10
Nmap Nmap	Version 2.3 beta12
Nmap Nmap	Version 2.3 beta13
Nmap Nmap	Version 2.3 beta14
Nmap Nmap	Version 2.3 beta17
Nmap Nmap	Version 2.3 beta18
Nmap Nmap	Version 2.3 beta19
Nmap Nmap	Version 2.3 beta20
Nmap Nmap	Version 2.3 beta21
Nmap Nmap	Version 2.3 beta4
Nmap Nmap	Version 2.3 beta5
Nmap Nmap	Version 2.3 beta6
Nmap Nmap	Version 2.3 beta8
Nmap Nmap	Version 2.3 beta9
Nmap Nmap	Version 2.50
Nmap Nmap	Version 2.51
Nmap Nmap	Version 2.52
Nmap Nmap	Version 2.53
Nmap Nmap	Version 2.54 beta16
Nmap Nmap	Version 2.54 beta19
Nmap Nmap	Version 2.54 beta1
Nmap Nmap	Version 2.54 beta20
Nmap Nmap	Version 2.54 beta21
Nmap Nmap	Version 2.54 beta22
Nmap Nmap	Version 2.54 beta24
Nmap Nmap	Version 2.54 beta25
Nmap Nmap	Version 2.54 beta26
Nmap Nmap	Version 2.54 beta27
Nmap Nmap	Version 2.54 beta28
Nmap Nmap	Version 2.54 beta29
Nmap Nmap	Version 2.54 beta2
Nmap Nmap	Version 2.54 beta30
Nmap Nmap	Version 2.54 beta31
Nmap Nmap	Version 2.54 beta32
Nmap Nmap	Version 2.54 beta33
Nmap Nmap	Version 2.54 beta34
Nmap Nmap	Version 2.54 beta35
Nmap Nmap	Version 2.54 beta36
Nmap Nmap	Version 2.54 beta37
Nmap Nmap	Version 2.54 beta3
Nmap Nmap	Version 2.54 beta4
Nmap Nmap	Version 2.54 beta5
Nmap Nmap	Version 2.54 beta6
Nmap Nmap	Version 2.54 beta7
Nmap Nmap	Version 2.99 rc1
Nmap Nmap	Version 2.99 rc2
Nmap Nmap	Version 3.00
Nmap Nmap	Version 3.10 alpha1
Nmap Nmap	Version 3.10 alpha2
Nmap Nmap	Version 3.10 alpha3
Nmap Nmap	Version 3.10 alpha4
Nmap Nmap	Version 3.10 alpha5
Nmap Nmap	Version 3.10 alpha7
Nmap Nmap	Version 3.10 alpha9
Nmap Nmap	Version 3.15 beta1
Nmap Nmap	Version 3.15 beta2
Nmap Nmap	Version 3.15 beta3
Nmap Nmap	Version 3.20
Nmap Nmap	Version 3.25
Nmap Nmap	Version 3.26
Nmap Nmap	Version 3.27
Nmap Nmap	Version 3.28
Nmap Nmap	Version 3.30
Nmap Nmap	Version 3.40 pvt10
Nmap Nmap	Version 3.40 pvt11
Nmap Nmap	Version 3.40 pvt12
Nmap Nmap	Version 3.40 pvt13
Nmap Nmap	Version 3.40 pvt14
Nmap Nmap	Version 3.40 pvt15
Nmap Nmap	Version 3.40 pvt16
Nmap Nmap	Version 3.40 pvt17
Nmap Nmap	Version 3.40 pvt1
Nmap Nmap	Version 3.40 pvt2
Nmap Nmap	Version 3.40 pvt3
Nmap Nmap	Version 3.40 pvt4
Nmap Nmap	Version 3.40 pvt6
Nmap Nmap	Version 3.40 pvt7
Nmap Nmap	Version 3.40 pvt8
Nmap Nmap	Version 3.40 pvt9
Nmap Nmap	Version 3.45
Nmap Nmap	Version 3.48
Nmap Nmap	Version 3.50
Nmap Nmap	Version 3.55
Nmap Nmap	Version 3.70
Nmap Nmap	Version 3.75
Nmap Nmap	Version 3.81
Nmap Nmap	Version 3.90
Nmap Nmap	Version 3.91
Nmap Nmap	Version 3.93
Nmap Nmap	Version 3.94 alpha1
Nmap Nmap	Version 3.94 alpha2
Nmap Nmap	Version 3.94 alpha3
Nmap Nmap	Version 3.95
Nmap Nmap	Version 3.96 beta1
Nmap Nmap	Version 3.98 beta1
Nmap Nmap	Version 3.9999
Nmap Nmap	Version 3.999
Nmap Nmap	Version 3.99
Nmap Nmap	Version 4.00
Nmap Nmap	Version 4.01
Nmap Nmap	Version 4.02 alpha1
Nmap Nmap	Version 4.02 alpha2
Nmap Nmap	Version 4.03
Nmap Nmap	Version 4.04 beta1
Nmap Nmap	Version 4.10
Nmap Nmap	Version 4.11
Nmap Nmap	Version 4.20
Nmap Nmap	Version 4.20 alpha10
Nmap Nmap	Version 4.20 alpha11
Nmap Nmap	Version 4.20 alpha1
Nmap Nmap	Version 4.20 alpha2
Nmap Nmap	Version 4.20 alpha3
Nmap Nmap	Version 4.20 alpha4
Nmap Nmap	Version 4.20 alpha5
Nmap Nmap	Version 4.20 alpha6
Nmap Nmap	Version 4.20 alpha7
Nmap Nmap	Version 4.20 alpha8
Nmap Nmap	Version 4.20 alpha9
Nmap Nmap	Version 4.20 rc1
Nmap Nmap	Version 4.20 rc2
Nmap Nmap	Version 4.21 alpha1
Nmap Nmap	Version 4.21 alpha2
Nmap Nmap	Version 4.21 alpha3
Nmap Nmap	Version 4.21 alpha4
Nmap Nmap	Version 4.22 soc1
Nmap Nmap	Version 4.22 soc2
Nmap Nmap	Version 4.22 soc3
Nmap Nmap	Version 4.22 soc5
Nmap Nmap	Version 4.22 soc6
Nmap Nmap	Version 4.22 soc7
Nmap Nmap	Version 4.22 soc8
Nmap Nmap	Version 4.49 rc1
Nmap Nmap	Version 4.49 rc2
Nmap Nmap	Version 4.49 rc3
Nmap Nmap	Version 4.49 rc4
Nmap Nmap	Version 4.49 rc5
Nmap Nmap	Version 4.49 rc6
Nmap Nmap	Version 4.49 rc7
Nmap Nmap	Version 4.50
Nmap Nmap	Version 4.51 beta
Nmap Nmap	Version 4.52
Nmap Nmap	Version 4.53
Nmap Nmap	Version 4.60
Nmap Nmap	Version 4.62
Nmap Nmap	Version 4.65
Nmap Nmap	Version 4.68
Nmap Nmap	Version 4.75
Nmap Nmap	Version 4.76
Nmap Nmap	Version 4.85 beta10
Nmap Nmap	Version 4.85 beta1
Nmap Nmap	Version 4.85 beta2
Nmap Nmap	Version 4.85 beta3
Nmap Nmap	Version 4.85 beta4
Nmap Nmap	Version 4.85 beta5
Nmap Nmap	Version 4.85 beta6
Nmap Nmap	Version 4.85 beta7
Nmap Nmap	Version 4.85 beta8
Nmap Nmap	Version 4.85 beta9
Nmap Nmap	Version 4.90 rc1
Nmap Nmap	Version 5.00
Nmap Nmap	Version 5.10 beta1
Nmap Nmap	Version 5.10 beta2
Nmap Nmap	Version 5.20
Nmap Nmap	Version 5.21
Nmap Nmap	Version 5.30 beta1
Nmap Nmap	Version 5.35 dc1
Nmap Nmap	Version 5.50
Nmap Nmap	Version 5.51
Nmap Nmap	Version 5.59 beta1
Nmap Nmap	Version 5.61 test1
Nmap Nmap	Version 5.61 test2
Nmap Nmap	Version 5.61 test4
Nmap Nmap	Version 5.61 test5
Nmap Nmap	Version 6.00
Nmap Nmap	Version 6.01
Nmap Nmap	Version 6.20 beta1