textcounter.pl Arbitrary Command Execution Vulnerability
BID:2265
Info
textcounter.pl Arbitrary Command Execution Vulnerability
| Bugtraq ID: | 2265 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 24 1998 12:00AM |
| Updated: | Jun 24 1998 12:00AM |
| Credit: | This vulnerability was announced by Doru Petrescu <[email protected]> on June 24, 1998 via Bugtraq. |
| Vulnerable: |
Matt Wright TextCounter 1.2 |
| Not Vulnerable: | |
Solution / Fix
textcounter.pl Arbitrary Command Execution Vulnerability
Solution:
This temporary fix was provided by Doru Petrescu <[email protected]> :
The fix is very simple: add after line 91, another line that will make sure that there is NO tricky characters in the filename.
$count_page = "$ENV{'DOCUMENT_URI'}"; # the original 91 line ....
$count_page =~ s/([^a-z0-9])/sprintf("%%%02X",$1)/ge; # ADD THIS !!!!!
An upgrade is also available:
Matt Wright TextCounter 1.2
Solution:
This temporary fix was provided by Doru Petrescu <[email protected]> :
The fix is very simple: add after line 91, another line that will make sure that there is NO tricky characters in the filename.
$count_page = "$ENV{'DOCUMENT_URI'}"; # the original 91 line ....
$count_page =~ s/([^a-z0-9])/sprintf("%%%02X",$1)/ge; # ADD THIS !!!!!
An upgrade is also available:
Matt Wright TextCounter 1.2
-
Matt Wright TextCounter 1.2.1
http://www.worldwidemart.com/scripts/textcounter.shtml
References
textcounter.pl Arbitrary Command Execution Vulnerability
References:
References: