BID:30267

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

Info

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

Bugtraq ID:	30267
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Jul 16 2008 12:00AM
Updated:	Jul 17 2008 10:19PM
Credit:	Tan Chew Keong
Vulnerable:	Sherzod Ruzmetov CGI::Session 4.33 Sherzod Ruzmetov CGI::Session 3.95 Sherzod Ruzmetov CGI::Session 3.94 FreeStyle Wiki FSWiki 3.6.2 FreeStyle Wiki FSWiki 3.6.3dev3

Not Vulnerable:	Sherzod Ruzmetov CGI::Session 4.34

Discussion

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

CGI::Session is prone to a directory-traversal vulnerability because it fails to sufficiently sanitize user-supplied input data.

Exploiting the issue may allow an attacker to obtain sensitive information that could aid in further attacks.

CGI::Session 3.94, 3.95, and 4.33 are vulnerable; other versions may also be affected.

Exploit / POC

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

An attacker can exploit this issue via a browser.

Solution / Fix

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

Solution:
The vendor has released an update. Please see the references for more information.

References

CGI::Session 'CGISESSID' Cookie Value Directory Traversal Vulnerability

References:

CGI::Session 4.34 Change Log (CGI::Session)
CGI::Session File Driver Session Cookie Directory Traversal (Tan Chew Keong)
Freestyle Wiki Homepage (Freestyle Wiki)
FreeStyleWiki (FSWiki) Session Cookie Directory Traversal Vulnerability (Tan Chew Keong)
FSWiki 3.6.2(3.6.3dev3) patch (FreeStyle Wiki)