Ciamos Highlight.PHP File Disclosure Vulnerability
BID:12854
Info
Ciamos Highlight.PHP File Disclosure Vulnerability
| Bugtraq ID: | 12854 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 19 2005 12:00AM |
| Updated: | Mar 19 2005 12:00AM |
| Credit: | Discovery of this vulnerability is credited to "Majid NT" <[email protected]>. |
| Vulnerable: |
Ciamos Ciamos RC1 Ciamos Ciamos Beta 0.9 Ciamos Ciamos 0.9.2 RC1 |
| Not Vulnerable: | |
Discussion
Ciamos Highlight.PHP File Disclosure Vulnerability
Ciamos is reported prone to a file disclosure vulnerability. The full scope of this vulnerability is not currently known, however, it is demonstrated that this issue may be leveraged to disclose the source of PHP files contained in a Ciamos installation.
A remote attacker may exploit this vulnerability to reveal files that contain potentially sensitive information. Information that is harvested in this manner may then be used to aid in further attacks against the software and the computer that is hosting the software.
Ciamos is reported prone to a file disclosure vulnerability. The full scope of this vulnerability is not currently known, however, it is demonstrated that this issue may be leveraged to disclose the source of PHP files contained in a Ciamos installation.
A remote attacker may exploit this vulnerability to reveal files that contain potentially sensitive information. Information that is harvested in this manner may then be used to aid in further attacks against the software and the computer that is hosting the software.
Exploit / POC
Ciamos Highlight.PHP File Disclosure Vulnerability
The following example is available:
http://www.example.com/ciamosinstalation/class/debug/highlight.php?file=ciamosinstallationpath\mainfile.php&line=151#151
The following example is available:
http://www.example.com/ciamosinstalation/class/debug/highlight.php?file=ciamosinstallationpath\mainfile.php&line=151#151
Solution / Fix
Ciamos Highlight.PHP File Disclosure Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Ciamos Highlight.PHP File Disclosure Vulnerability
References:
References:
- Ciamos Homepage (Ciamos)
- Ciamos Highlight.php Security Hole(IHS) ("Majid NT"