Windy Road Vistered Little Theme Skin Parameter Directory Traversal Vulnerability

Bugtraq ID:	24178
Class:	Input Validation Error
CVE:	CVE-2007-2934
Remote:	Yes
Local:	No
Published:	May 28 2007 12:00AM
Updated:	May 07 2015 05:37PM
Credit:	Mahmood_ali is credited with the discovery of this vulnerability.
Vulnerable:	Windy Road Vistered Little 1.6a
Not Vulnerable:	Windy Road Vistered Little 1.7.3

Windy Road Vistered Little Theme Skin Parameter Directory Traversal Vulnerability

Vistered Little is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to retrieve arbitrary files from the vulnerable system in the context of the webserver process. Information obtained may aid in further attacks.

This issue affects Vistered Little 1.6a; other versions may also be affected.

Windy Road Vistered Little Theme Skin Parameter Directory Traversal Vulnerability

Attackers can use a browser to exploit this issue.

The following proof-of-concept URI is available:

http://www.example.com/[path]/skins/common.css.php?skin=../../../../../../etc/passwd

Windy Road Vistered Little Theme Skin Parameter Directory Traversal Vulnerability

Solution:
The vendor has released version 1.7.3 to address this issue; please see the reference section for details.


Windy Road Vistered Little 1.6a

• Windy Road vistered-little-173a.zip
  http://windyroad.org/wp-content/uploads/2007/05/vistered-little-173a.z ip

Windy Road Vistered Little Theme Skin Parameter Directory Traversal Vulnerability

References:

• Vistered Little (Windy Road)