BNLug - WEBIF CGI OutConfig Parameter Local File Include Vulnerability

WEBIF.CGI OutConfig Parameter Local File Include Vulnerability

TITLE: WEBIF.CGI OutConfig Parameter Local File Include Vulnerability
CLASS: Input Validation Error
CVE:
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 18 2007 12:00AM
UPDATE: Jun 18 2007 12:00AM
CREDIT: maiosyet is credited with the discovery of this vulnerability.
VULNERABLE:

ifnet WEBIF.CGI 0

NOT VULNERABLE:

Vai alla pagina originale su Security Focus

Discussion

WEBIF.CGI is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

Exploiting this issue may allow an unauthorized user to view files and execute local scripts.

Exploit

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/webif/webif.cgi?cmd=query&config=conf_2000/config.txt&outconfig=../../../../etc/issue

Solution

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.

References

References:

WEBIF.CGI Homepage (ifnet )
Webif.cgi local file inclusion (maiosyet@mawk.org)

WEBIF.CGI OutConfig Parameter Local File Include Vulnerability

Discussion

Exploit

Solution

References

PhpLog

BNLug Benevento Linux Users Group

Menu Principale

Staff

Partner

Link