Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
BID:18327
CVE-2006-2644 |Info
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
| Bugtraq ID: | 18327 |
| Class: | Input Validation Error |
| CVE: |
CVE-2006-2644 |
| Remote: | Yes |
| Local: | No |
| Published: | May 04 2006 12:00AM |
| Updated: | Jun 23 2006 03:45AM |
| Credit: | Hendrik Weimer is credited with the discovery of this vulnerability. |
| Vulnerable: |
Ubuntu Ubuntu Linux 5.10 powerpc Ubuntu Ubuntu Linux 5.10 i386 Ubuntu Ubuntu Linux 5.10 amd64 Ubuntu Ubuntu Linux 5.0 4 powerpc Ubuntu Ubuntu Linux 5.0 4 i386 Ubuntu Ubuntu Linux 5.0 4 amd64 Ubuntu Ubuntu Linux 6.06 LTS powerpc Ubuntu Ubuntu Linux 6.06 LTS i386 Ubuntu Ubuntu Linux 6.06 LTS amd64 S.u.S.E. Linux Professional 10.0 OSS S.u.S.E. Linux Professional 10.0 S.u.S.E. Linux Professional 9.3 x86_64 S.u.S.E. Linux Professional 9.3 S.u.S.E. Linux Professional 9.2 x86_64 S.u.S.E. Linux Professional 9.2 S.u.S.E. Linux Professional 9.1 x86_64 S.u.S.E. Linux Professional 9.1 S.u.S.E. Linux Professional 10.1 S.u.S.E. Linux Personal 10.0 OSS S.u.S.E. Linux Personal 9.3 x86_64 S.u.S.E. Linux Personal 9.3 S.u.S.E. Linux Personal 9.2 x86_64 S.u.S.E. Linux Personal 9.2 S.u.S.E. Linux Personal 9.1 x86_64 S.u.S.E. Linux Personal 9.1 S.u.S.E. Linux Personal 10.1 Gentoo Linux Debian Linux 3.1 sparc Debian Linux 3.1 s/390 Debian Linux 3.1 ppc Debian Linux 3.1 mipsel Debian Linux 3.1 mips Debian Linux 3.1 m68k Debian Linux 3.1 ia-64 Debian Linux 3.1 ia-32 Debian Linux 3.1 hppa Debian Linux 3.1 arm Debian Linux 3.1 amd64 Debian Linux 3.1 alpha Debian Linux 3.1 AWStats AWStats 6.4 AWStats AWStats 6.3 AWStats AWStats 6.2 AWStats AWStats 6.1 AWStats AWStats 6.0 AWStats AWStats 6.5.0 build 1.857 AWStats AWStats 6.5 -1 |
| Not Vulnerable: | |
Discussion
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
Awstats is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to execute arbitrary shell commands in the context of the webserver process. This may help attackers compromise the underlying system; other attacks are also possible.
Awstats is prone to an arbitrary command-execution vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.
An attacker can exploit this vulnerability to execute arbitrary shell commands in the context of the webserver process. This may help attackers compromise the underlying system; other attacks are also possible.
Exploit / POC
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
This issue can be exploited through a web client.
This issue can be exploited through a web client.
Solution / Fix
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected].
Please see the references for third-party vendor advisories and fixes.
AWStats AWStats 6.1
AWStats AWStats 6.3
AWStats AWStats 6.4
Solution:
Currently we are not aware of any official vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected]:[email protected].
Please see the references for third-party vendor advisories and fixes.
AWStats AWStats 6.1
-
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/noarch/awstats-6.6-0.1 .noarch.rpm -
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 9.2:
ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/noarch/awstats-6.6-0.1 .noarch.rpm -
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 9.1:
ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/noarch/awstats-6.6-0 .1.noarch.rpm
AWStats AWStats 6.3
-
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 9.3:
ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/noarch/awstats-6.6-0.1 .noarch.rpm
AWStats AWStats 6.4
-
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 10.0:
ftp://ftp.suse.com/pub/suse/i386/update/10.0/rpm/noarch/awstats-6.6-0. 1.noarch.rpm -
SuSE awstats-6.6-0.1.noarch.rpm
SUSE LINUX 10.1:
ftp://ftp.suse.com/pub/suse/update/10.1/rpm/noarch/awstats-6.6-0.1.noa rch.rpm
References
Awstats Configuration File Remote Arbitrary Command Execution Vulnerability
References:
References:
- AWStats Homepage (AWStats)
- Debian Bug report logs - #365910 - AWStats: Malicious config file shell code inj (Hendrik Weimer)