PHPBB Arbitrary File Deletion Vulnerability
BID:12623
Info
PHPBB Arbitrary File Deletion Vulnerability
| Bugtraq ID: | 12623 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-0258 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 22 2005 12:00AM |
| Updated: | Jul 12 2009 10:56AM |
| Credit: | Discovery is credited to AnthraX101 <[email protected]>. |
| Vulnerable: |
phpBB Group phpBB 2.0.11 phpBB Group phpBB 2.0.10 phpBB Group phpBB 2.0.9 phpBB Group phpBB 2.0.8 a phpBB Group phpBB 2.0.8 phpBB Group phpBB 2.0.7 a phpBB Group phpBB 2.0.7 phpBB Group phpBB 2.0.6 d phpBB Group phpBB 2.0.6 c phpBB Group phpBB 2.0.6 phpBB Group phpBB 2.0.5 phpBB Group phpBB 2.0.4 phpBB Group phpBB 2.0.3 phpBB Group phpBB 2.0.2 phpBB Group phpBB 2.0.1 phpBB Group phpBB 2.0 .0 phpBB Group phpBB 2.0 RC4 phpBB Group phpBB 2.0 RC3 phpBB Group phpBB 2.0 RC2 phpBB Group phpBB 2.0 RC1 phpBB Group phpBB 2.0 Beta 1 Gentoo Linux |
| Not Vulnerable: |
phpBB Group phpBB 2.0.12 |
Discussion
PHPBB Arbitrary File Deletion Vulnerability
phpBB is affected by an arbitrary file deletion vulnerability. This issue arises due to an input validation error allowing an attacker to delete files in the context of a Web server running the application
It is reported that this issue allows an attacker to influence calls to the 'unlink()' function and delete arbitrary files. Due to a lack of input validation, an attacker can supply directory traversal sequences followed by an arbitrary file name through the 'avatarselect' return value to delete specific files.
phpBB 2.0.11 and prior versions are affected by this issue.
phpBB is affected by an arbitrary file deletion vulnerability. This issue arises due to an input validation error allowing an attacker to delete files in the context of a Web server running the application
It is reported that this issue allows an attacker to influence calls to the 'unlink()' function and delete arbitrary files. Due to a lack of input validation, an attacker can supply directory traversal sequences followed by an arbitrary file name through the 'avatarselect' return value to delete specific files.
phpBB 2.0.11 and prior versions are affected by this issue.
Exploit / POC
PHPBB Arbitrary File Deletion Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
PHPBB Arbitrary File Deletion Vulnerability
Solution:
The vendor has released phpBB 2.0.12 to address this issue.
Gentoo has released advisory GLSA 200503-02 to address various issues in phpBB. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their computers:
emerge --sync
emerge --ask --oneshot --verbose ">=www-apps/phpBB-2.0.13"
phpBB Group phpBB 2.0 RC1
phpBB Group phpBB 2.0 RC3
phpBB Group phpBB 2.0 RC4
phpBB Group phpBB 2.0 Beta 1
phpBB Group phpBB 2.0 RC2
phpBB Group phpBB 2.0 .0
phpBB Group phpBB 2.0.1
phpBB Group phpBB 2.0.10
phpBB Group phpBB 2.0.11
phpBB Group phpBB 2.0.2
phpBB Group phpBB 2.0.3
phpBB Group phpBB 2.0.4
phpBB Group phpBB 2.0.5
phpBB Group phpBB 2.0.6
phpBB Group phpBB 2.0.6 c
phpBB Group phpBB 2.0.6 d
phpBB Group phpBB 2.0.7
phpBB Group phpBB 2.0.7 a
phpBB Group phpBB 2.0.8 a
phpBB Group phpBB 2.0.8
phpBB Group phpBB 2.0.9
Solution:
The vendor has released phpBB 2.0.12 to address this issue.
Gentoo has released advisory GLSA 200503-02 to address various issues in phpBB. Please see the referenced advisory for more information. Gentoo users may carry out the following commands to update their computers:
emerge --sync
emerge --ask --oneshot --verbose ">=www-apps/phpBB-2.0.13"
phpBB Group phpBB 2.0 RC1
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0 RC3
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0 RC4
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0 Beta 1
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0 RC2
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0 .0
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.1
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.10
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.11
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.2
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.3
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.4
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.5
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.6
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.6 c
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.6 d
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.7
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.7 a
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.8 a
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.8
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
phpBB Group phpBB 2.0.9
-
phpBB Group phpBB 2.0.12
http://www.phpbb.com/downloads.php
References
PHPBB Arbitrary File Deletion Vulnerability
References:
References: