BXCP Index.PHP Input Validation PHP Script Execution Vulnerability
BID:12469
Info
BXCP Index.PHP Input Validation PHP Script Execution Vulnerability
| Bugtraq ID: | 12469 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 07 2005 12:00AM |
| Updated: | Feb 07 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to <[email protected]>. |
| Vulnerable: |
BXCP BXCP 0.2.9 .7 |
| Not Vulnerable: | |
Discussion
BXCP Index.PHP Input Validation PHP Script Execution Vulnerability
BXCP is reported prone to an access restriction bypass vulnerability. It is reported that due to a lack of input sanitization the 'show' URI parameter passed to the 'index.php' script can be used to render any PHP script that resides on a vulnerable computer.
A remote attacker may exploit this vulnerability to render PHP scripts that are supposed to be restricted.
The vulnerability may also be exploited by an attacker that has local access to a target computer to run arbitrary PHP code with the privileges of the web server process.
BXCP is reported prone to an access restriction bypass vulnerability. It is reported that due to a lack of input sanitization the 'show' URI parameter passed to the 'index.php' script can be used to render any PHP script that resides on a vulnerable computer.
A remote attacker may exploit this vulnerability to render PHP scripts that are supposed to be restricted.
The vulnerability may also be exploited by an attacker that has local access to a target computer to run arbitrary PHP code with the privileges of the web server process.
Exploit / POC
BXCP Index.PHP Input Validation PHP Script Execution Vulnerability
No exploit is required.
No exploit is required.
Solution / Fix
BXCP Index.PHP Input Validation PHP Script Execution Vulnerability
Solution:
Reportedly the vendor has released a patch dealing with this issue, although this is not confirmed. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Reportedly the vendor has released a patch dealing with this issue, although this is not confirmed. Please contact the vendor for more information.
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.