Claroline RootSys Remote File Include Vulnerability
BID:23609
Info
Claroline RootSys Remote File Include Vulnerability
| Bugtraq ID: | 23609 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 23 2007 12:00AM |
| Updated: | Apr 24 2007 08:40PM |
| Credit: | Mohandko is credited with the discovery of this vulnerability. |
| Vulnerable: |
Claroline Claroline 1.8 rc1 Claroline Claroline 1.7.8 Claroline Claroline 1.7.8 Claroline Claroline 1.7.7 Claroline Claroline 1.7.7 Claroline Claroline 1.7.6 Claroline Claroline 1.7.6 Claroline Claroline 1.7.5 Claroline Claroline 1.7.5 Claroline Claroline 1.7.4 Claroline Claroline 1.7.4 Claroline Claroline 1.7.3 Claroline Claroline 1.7.2 Claroline Claroline 1.7.2 Claroline Claroline 1.7.1 Claroline Claroline 1.6 rc1 Claroline Claroline 1.6 beta Claroline Claroline 1.6 Claroline Claroline 1.5.4 Claroline Claroline 1.5.3 Claroline Claroline 1.5 Claroline Claroline 1.7 Claroline Claroline 1.6 Claroline Claroline 1.5 Claroline Claroline 1.4 Claroline Claroline 1.3 Claroline Claroline 1.2 |
| Not Vulnerable: | |
Discussion
Claroline RootSys Remote File Include Vulnerability
Claroline is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.
Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
Claroline is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.
Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.
Exploit / POC
Claroline RootSys Remote File Include Vulnerability
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com//claroline/inc/lib/rootSys=Shell
Attackers can use a browser to exploit this issue.
The following example URI is available:
http://www.example.com//claroline/inc/lib/rootSys=Shell
Solution / Fix
Claroline RootSys Remote File Include Vulnerability
Solution:
The vendor has released a patch to address this issue.
Claroline Claroline 1.6
Claroline Claroline 1.7
Claroline Claroline 1.6
Claroline Claroline 1.6 rc1
Claroline Claroline 1.6 beta
Claroline Claroline 1.7.1
Claroline Claroline 1.7.2
Claroline Claroline 1.7.2
Claroline Claroline 1.7.3
Claroline Claroline 1.7.4
Claroline Claroline 1.7.4
Claroline Claroline 1.7.5
Claroline Claroline 1.7.5
Claroline Claroline 1.7.6
Claroline Claroline 1.7.6
Claroline Claroline 1.7.7
Claroline Claroline 1.7.7
Claroline Claroline 1.7.8
Claroline Claroline 1.7.8
Solution:
The vendor has released a patch to address this issue.
Claroline Claroline 1.6
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.6
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.6 rc1
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.6 beta
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.1
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.2
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.2
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.3
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.4
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.4
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.5
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.5
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.6
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.6
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.7
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.7
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.8
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
Claroline Claroline 1.7.8
-
Claroline claroline.patch17501.zip
http://www.claroline.net/dlarea/claroline.patch17501.zip
References
Claroline RootSys Remote File Include Vulnerability
References:
References:
- Claroline Homepage (Claroline)
- CLAROLINE PATCH 17501 (Claroline)
- [[email protected]: claroline <= Multiple Remote File Include Vulnerablitiy] (Mohandko)