SOTEeSKLEP _Files Local File Include Vulnerability
BID:25286
Info
SOTEeSKLEP _Files Local File Include Vulnerability
| Bugtraq ID: | 25286 |
| Class: | Input Validation Error |
| CVE: |
CVE-2007-4369 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 13 2007 12:00AM |
| Updated: | May 07 2015 05:36PM |
| Credit: | dun is credited with the discovery of this vulnerability. |
| Vulnerable: |
SOTE SOTEeSKLEP 3.5 SOTE SOTEeSKLEP 3.1 SOTE SOTEeSKLEP 3.0 SOTE SOTEeSKLEP 2.5 SOTE SOTEeSKLEP 2.0 |
| Not Vulnerable: |
SOTE SOTEeSKLEP 4.0 |
Discussion
SOTEeSKLEP _Files Local File Include Vulnerability
SOTEeSKLEP is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
Exploiting this issue may allow an unauthorized user to view files and execute local scripts.
Versions prior to SOTEeSKLEP 4.0 are vulnerable.
SOTEeSKLEP is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.
Exploiting this issue may allow an unauthorized user to view files and execute local scripts.
Versions prior to SOTEeSKLEP 4.0 are vulnerable.
Exploit / POC
SOTEeSKLEP _Files Local File Include Vulnerability
Attackers can exploit this issue via a browser.
The following proof-of-concept URI is available:
http://www.example.com/go/_files/index.php?file=./.././.././.././example_file.txt
Attackers can exploit this issue via a browser.
The following proof-of-concept URI is available:
http://www.example.com/go/_files/index.php?file=./.././.././.././example_file.txt
Solution / Fix
SOTEeSKLEP _Files Local File Include Vulnerability
Solution:
The vendor released SOTEeSKLEP 4.0 and patches to address this issue. Please see the references for more information.
SOTE SOTEeSKLEP 2.0
SOTE SOTEeSKLEP 2.5
SOTE SOTEeSKLEP 3.1
SOTE SOTEeSKLEP 3.5
SOTE SOTEeSKLEP 3.0
Solution:
The vendor released SOTEeSKLEP 4.0 and patches to address this issue. Please see the references for more information.
SOTE SOTEeSKLEP 2.0
-
SOTE patch_security_files_2.0.tar.gz
http://www.sote.pl/upgrades/patch-2.0-3.5/2.0/patch_security_files_2.0 .tar.gz
SOTE SOTEeSKLEP 2.5
-
SOTE patch_security_files_2.5.tar.gz
http://www.sote.pl/upgrades/patch-2.0-3.5/2.5/patch_security_files_2.5 .tar.gz
SOTE SOTEeSKLEP 3.1
-
SOTE patch_security_files_3.1.tar.gz
http://www.sote.pl/upgrades/patch-2.0-3.5/3.1/patch_security_files_3.1 .tar.gz
SOTE SOTEeSKLEP 3.5
-
SOTE patch_security_files_3.5.tar.gz
http://www.sote.pl/upgrades/patch-2.0-3.5/3.5/patch_security_files_3.5 .tar.gz
SOTE SOTEeSKLEP 3.0
-
SOTE patch_security_files_3.0.tar.gz
http://www.sote.pl/upgrades/patch-2.0-3.5/3.0/patch_security_files_3.0 .tar.gz
References
SOTEeSKLEP _Files Local File Include Vulnerability
References:
References: