Bugzilla '--attach_path' Directory Traversal Vulnerability
BID:30661
Info
Bugzilla '--attach_path' Directory Traversal Vulnerability
| Bugtraq ID: | 30661 |
| Class: | Input Validation Error |
| CVE: |
CVE-2008-4437 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 12 2008 12:00AM |
| Updated: | Apr 13 2015 10:25PM |
| Credit: | ilja |
| Vulnerable: |
Mozilla Bugzilla 3.1.4 Mozilla Bugzilla 3.1.3 Mozilla Bugzilla 3.1.2 Mozilla Bugzilla 3.1.1 Mozilla Bugzilla 3.1 Mozilla Bugzilla 3.0.4 Mozilla Bugzilla 3.0.2 Mozilla Bugzilla 3.0.1 Mozilla Bugzilla 3.0 Mozilla Bugzilla 2.23.4 Mozilla Bugzilla 2.23.3 Mozilla Bugzilla 2.23.2 Mozilla Bugzilla 2.22.4 Mozilla Bugzilla 2.22.3 Mozilla Bugzilla 2.22.2 Mozilla Bugzilla 2.22.1 Mozilla Bugzilla 2.22 RC1 Mozilla Bugzilla 2.22 Gentoo Linux |
| Not Vulnerable: |
Mozilla Bugzilla 3.0.5 Mozilla Bugzilla 2.22.5 Mozilla Bugzilla 3.2rc1 |
Discussion
Bugzilla '--attach_path' Directory Traversal Vulnerability
Bugzilla is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue will allow an attacker to view arbitrary local files within the context of the server. Information harvested may aid in launching further attacks.
The following versions are affected:
Bugzilla 2.22.1 through 2.22.4
Bugzilla 2.23.3 and later
Bugzilla is prone to a directory-traversal vulnerability because the application fails to sufficiently sanitize user-supplied input.
Exploiting this issue will allow an attacker to view arbitrary local files within the context of the server. Information harvested may aid in launching further attacks.
The following versions are affected:
Bugzilla 2.22.1 through 2.22.4
Bugzilla 2.23.3 and later
Exploit / POC
Bugzilla '--attach_path' Directory Traversal Vulnerability
An attacker can exploit this issue via a browser.
The following example file is available:
An attacker can exploit this issue via a browser.
The following example file is available:
Solution / Fix
Bugzilla '--attach_path' Directory Traversal Vulnerability
Solution:
Updates are available. Please see the references for more information.
Mozilla Bugzilla 2.22 RC1
Mozilla Bugzilla 2.22
Mozilla Bugzilla 2.22.1
Mozilla Bugzilla 2.22.2
Mozilla Bugzilla 2.22.3
Mozilla Bugzilla 2.22.4
Mozilla Bugzilla 2.23.2
Mozilla Bugzilla 2.23.3
Mozilla Bugzilla 2.23.4
Mozilla Bugzilla 3.0
Mozilla Bugzilla 3.0.1
Mozilla Bugzilla 3.0.2
Mozilla Bugzilla 3.0.4
Mozilla Bugzilla 3.1
Mozilla Bugzilla 3.1.1
Mozilla Bugzilla 3.1.2
Mozilla Bugzilla 3.1.3
Mozilla Bugzilla 3.1.4
Solution:
Updates are available. Please see the references for more information.
Mozilla Bugzilla 2.22 RC1
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.22
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.22.1
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.22.2
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.22.3
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.22.4
-
Mozilla bugzilla-2.22.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-2.22.5.tar.gz -
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.23.2
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.23.3
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 2.23.4
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.0
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.0.1
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.0.2
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.0.4
-
Mozilla bugzilla-3.0.5.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.0.5.tar.gz -
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.1
-
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.1.1
-
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.1.2
-
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.1.3
-
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
Mozilla Bugzilla 3.1.4
-
Mozilla bugzilla-3.2rc1.tar.gz
http://ftp.mozilla.org/pub/mozilla.org/webtools/bugzilla-3.2rc1.tar.gz
References
Bugzilla '--attach_path' Directory Traversal Vulnerability
References:
References: