|
Feeds -
Exploits
|
|
Written by Juan Galiana Lara
|
|
Tuesday, 03 March 2009 22:01 |
eXtplorer 'include/init.php' Local File Include Vulnerability
-\\Bugtraq ID:
33955
-\\Class:
Input Validation Error
-\\CVE:
-\\Remote:
Yes
-\\Local:
No
-\\Published:
Mar 02 2009 12:00AM
-\\Updated:
Mar 03 2009 07:46PM
-\\Credit:
Juan Galiana Lara
-\\Vulnerable:
eXtplorer eXtplorer 2.0
-\\Not Vulnerable:
eXtplorer eXtplorer 2.0.1
-\\Discussion
eXtplorer is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to view and execute arbitrary local files in the context of the webserver process. This may aid in further attacks.
eXtplorer 2.0.0 is vulnerable; prior versions may also be affected.
-\\Exploit(s)/PoC(s):
Attackers can exploit this issue via a browser.
The following example URIs are available:
http://www.example.com/path/?lang=../../path/to/maliciuos_uploaded_code
http://www.example.com/path/?lang=../../../../../etc/passwd%00
-\\Solution
The vendor has released an update. Please see the references for more information.
-\\References(s)
--Vendor Homepage
http://extplorer.sourceforge.net (eXtplorer)
--[ISecAuditors Security Advisories] eXtplorer Remote Code Execution
http://www.securityfocus.com/archive/1/50137 (ISecAuditors Security Advisories <
This e-mail address is being protected from spambots. You need JavaScript enabled to view it
>)
|
