← back
CVE-2019-16278

CVE-2019-16278

CVSS 9.8 CRITICALEPSS 99.1%● KEVCWE-22
In short

A flaw in nostromo web server versions up to 1.9.6 allows attackers to access files outside the intended directory through specially crafted requests, potentially leading to remote code execution.

Technical detail

Directory traversal vulnerability in the http_verify function of nostromo nhttpd ≤1.9.6 enables path manipulation attacks via malicious HTTP requests, allowing unauthorized file access and code execution without authentication. The vulnerability stems from insufficient input validation on file paths.

Summary generated and translated by AI from the official description.
Directory Traversal in the function http_verify in nostromo nhttpd through 1.9.6 allows an attacker to achieve remote code execution via a crafted HTTP request.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · n/a
public PoCs found19
githubgithub.com/jas502n/CVE-2019-1627870githubgithub.com/imjdl/CVE-2019-16278-PoC9githubgithub.com/AnubisSec/CVE-2019-162788githubgithub.com/aN0mad/CVE-2019-16278-Nostromo_1.9.6-RCE6githubgithub.com/ianxtianxt/CVE-2019-162783githubgithub.com/andknownmaly/CVE-2019-162783githubgithub.com/cancela24/CVE-2019-16278-Nostromo-1.9.6-RCE1githubgithub.com/darkerego/Nostromo_Python31githubgithub.com/Kr0ff/cve-2019-162781githubgithub.com/NHPT/CVE-2019-162780githubgithub.com/keshiba/cve-2019-162780githubgithub.com/h3x0v3rl0rd/CVE-2019-162780githubgithub.com/alexander-fernandes/CVE-2019-162780githubgithub.com/FredBrave/CVE-2019-16278-Nostromo-1.9.6-RCE0githubgithub.com/CybermonkX/CVE-2019-16278_Nostromo-1.9.6---Remote-Code-Execution0exploitdbwww.exploit-db.com/exploits/47837unverifiedcve_referencepacketstormsecurity.com/files/155802/nostromo-1.9.6-Remote-Code-Execution.htmlunverifiedexploitdbwww.exploit-db.com/exploits/47573unverifiedcve_referencepacketstormsecurity.com/files/155045/Nostromo-1.9.6-Directory-Traversal-Remote-Command-Execution.htmlunverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/155045/Nostromo-1.9.6-Directory-Traversal-Remote-Command-Execution.htmlhttp://packetstormsecurity.com/files/155802/nostromo-1.9.6-Remote-Code-Execution.htmlhttps://git.sp0re.sh/sp0re/Nhttpd-exploitshttps://sp0re.shhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-16278http://www.nazgul.ch/dev/nostromo_cl.txt