Greg Matthews Classifieds.cgi Metacharacter Vulnerability
BID:2020
Info
Greg Matthews Classifieds.cgi Metacharacter Vulnerability
| Bugtraq ID: | 2020 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | Yes |
| Published: | Dec 15 1998 12:00AM |
| Updated: | Dec 15 1998 12:00AM |
| Credit: | Discovery credit is not currently known. |
| Vulnerable: |
Greg Matthews Classifieds.cgi 1.0 |
| Not Vulnerable: | |
Discussion
Greg Matthews Classifieds.cgi Metacharacter Vulnerability
Classifieds.cgi is a perl script (part of the classifieds package by Greg Matthews) which provides simple classified ads to web sites. Due to improper input validation it can be used to read files on the host machine, with the privileges of the web server. This can be accomplished by embedding the input redirection metacharacter along with a filename into the form field used for e-mail address entry (<input name=return>). Any file that the web server process has read access to can be retrieved.
Classifieds.cgi is a perl script (part of the classifieds package by Greg Matthews) which provides simple classified ads to web sites. Due to improper input validation it can be used to read files on the host machine, with the privileges of the web server. This can be accomplished by embedding the input redirection metacharacter along with a filename into the form field used for e-mail address entry (<input name=return>). Any file that the web server process has read access to can be retrieved.
Exploit / POC
Greg Matthews Classifieds.cgi Metacharacter Vulnerability
Submit email@host</etc/passwd as e-mail address.
Submit email@host</etc/passwd as e-mail address.
Solution / Fix
Greg Matthews Classifieds.cgi Metacharacter Vulnerability
Solution:
Currently the SecurityFocus staff are not ware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not ware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
Greg Matthews Classifieds.cgi Metacharacter Vulnerability
References:
References: