RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
BID:39007
Info
RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
| Bugtraq ID: | 39007 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 27 2010 12:00AM |
| Updated: | Apr 06 2010 04:22PM |
| Credit: | Jose Luis Gongora Fernandez |
| Vulnerable: |
Simple Machines Simple Machines Forum 1.1.8 Simple Machines Simple Machines Forum 1.1.7 Simple Machines Simple Machines Forum 1.1.6 Simple Machines Simple Machines Forum 1.1.5 Simple Machines Simple Machines Forum 1.1.4 Simple Machines Simple Machines Forum 1.1.3 Simple Machines Simple Machines Forum 1.1.2 Simple Machines Simple Machines Forum 1.1.1 |
| Not Vulnerable: | |
Discussion
RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
Simple Machines Forum is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input.
An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible.
Simple Machines Forum 1.1.8 and prior versions are vulnerable; other versions may also be affected.
RETIRED (April 6, 2010): The vendor indicates that the issue as described is not exploitable.
Simple Machines Forum is prone to a vulnerability that lets attackers upload arbitrary files. The issue occurs because the application fails to adequately sanitize user-supplied input.
An attacker can exploit this vulnerability to upload arbitrary code and execute it in the context of the webserver process. This may facilitate unauthorized access or privilege escalation; other attacks are also possible.
Simple Machines Forum 1.1.8 and prior versions are vulnerable; other versions may also be affected.
RETIRED (April 6, 2010): The vendor indicates that the issue as described is not exploitable.
Exploit / POC
RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
Attackers may exploit this issue via a browser.
Attackers may exploit this issue via a browser.
Solution / Fix
RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
RETIRED: Simple Machines Forum Avatar Upload Arbitrary File Upload Vulnerability
References:
References:
- Simple Machines Homepage (Simple Machines)