ContentServ FileServer.php Local File Include Vulnerability
BID:21369
Info
ContentServ FileServer.php Local File Include Vulnerability
| Bugtraq ID: | 21369 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Nov 30 2006 12:00AM |
| Updated: | Dec 13 2006 08:33PM |
| Credit: | [email protected] is credited with the discovery of this vulnerability. |
| Vulnerable: |
contentServ contentServ 4.3 contentServ contentServ 4.2 contentServ contentServ 4.1 |
| Not Vulnerable: | |
Discussion
ContentServ FileServer.php Local File Include Vulnerability
contentServ is prone to a local file-include vulnerability because the application fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary server-side script code that resides on an affected computer with the privileges of the webserver process. This may potentially facilitate unauthorized access.
Note that the attacker may also be able to leverage this issue to read arbitrary files on an affected computer with the privileges of the webserver.
contentServ is prone to a local file-include vulnerability because the application fails to properly sanitize user-supplied input.
An attacker may leverage this issue to execute arbitrary server-side script code that resides on an affected computer with the privileges of the webserver process. This may potentially facilitate unauthorized access.
Note that the attacker may also be able to leverage this issue to read arbitrary files on an affected computer with the privileges of the webserver.
Exploit / POC
ContentServ FileServer.php Local File Include Vulnerability
Attackers can exploit this issue via a browser.
The following proof-of-concept URI is available:
http://www.example.com/contentserv/4.2/admin/FileServer.php?src=../../../../../etc/passwd
Attackers can exploit this issue via a browser.
The following proof-of-concept URI is available:
http://www.example.com/contentserv/4.2/admin/FileServer.php?src=../../../../../etc/passwd
Solution / Fix
ContentServ FileServer.php Local File Include Vulnerability
Solution:
The vendor released a fix to address this issue. Please conatct the vendor for information on obtaining and applying the fix.
Solution:
The vendor released a fix to address this issue. Please conatct the vendor for information on obtaining and applying the fix.
References
ContentServ FileServer.php Local File Include Vulnerability
References:
References:
- contentServ Homepage (contentServ)
- contentserv 4.x ([email protected])