BID:38911

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

Info

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

Bugtraq ID:	38911
Class:	Input Validation Error
CVE:	CVE-2010-1858
Remote:	Yes
Local:	No
Published:	Mar 23 2010 12:00AM
Updated:	Apr 13 2015 09:02PM
Credit:	Chip D3 Bi0s
Vulnerable:	Roman Gelembjuk SMEStorage 1.0

Not Vulnerable:	Roman Gelembjuk SMEStorage 1.1

Discussion

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

The SMEStorage component for Joomla! is prone to a local file-include vulnerability because it fails to properly sanitize user-supplied input.

An attacker can exploit this vulnerability to obtain potentially sensitive information or execute arbitrary local scripts in the context of the webserver process. This may allow the attacker to compromise the application and the computer; other attacks are also possible.

Versions prior to SMEStorage 1.1 are vulnerable.

Exploit / POC

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

Attackers can exploit this issue via a browser.

Solution / Fix

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

Solution:
Updates are available. Please see the references for details.

References

SMEStorage 'com_smestorage' Component for Joomla! Local File Include Vulnerability

References:

Joomla File Directory component updated (TheSMESpace Blog)
SMEStorage Component Homepage (Roman Gelembjuk)