NNCP Path Traversal Vulnerability

A path traversal vulnerability has been identified in NNCP versions prior to 8.12.0. This issue allows for reading or writing files outside of designated directories during the 'freq' and file-saving operations. The vulnerability arises because the application accepts crafted paths that include directory traversal sequences, which can be exploited to access sensitive files, such as configuration files containing private keys.

Impact

Exploitation of this vulnerability could lead to unauthorized access to files outside the intended directory scope, including sensitive configuration files.

Reproduction

The vulnerability can be reproduced by sending packets to an NNCP node that include paths with '..' sequences. This will cause the application to traverse directories and access files outside the designated 'freq' or incoming directories. For example, requesting a file from the 'freq' directory that includes a traversal sequence can retrieve files from the root directory, bypassing normal access controls.

Remediation

Users can update to NNCP version 8.12.0 or later, where this vulnerability has been patched. Instructions for updating can be found in the NNCP release notes.