Codeorigin Sysax Multi Server 'file' Parameter Directory Traversal Vulnerability

Bugtraq ID:	52872
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	Apr 03 2012 12:00AM
Updated:	Apr 03 2012 12:00AM
Credit:	Craig Freyman
Vulnerable:	Codeorigin Sysax Multi Server 5.57
Not Vulnerable:

Codeorigin Sysax Multi Server 'file' Parameter Directory Traversal Vulnerability

Sysax Multi Server is prone to a directory-traversal vulnerability because it fails to properly sanitize user-supplied input.

Remote attackers can use specially crafted requests with directory-traversal sequences ('../') to retrieve arbitrary files in the context of the application.

Exploiting this issue may allow an attacker to obtain sensitive information that could aid in further attacks.

Sysax Multi Server 5.57 is vulnerable; other versions may also be affected.

Codeorigin Sysax Multi Server 'file' Parameter Directory Traversal Vulnerability

An attacker can exploit the issue with a browser.

The following exploit is available:

• /data/vulnerabilities/exploits/52872.py

Codeorigin Sysax Multi Server 'file' Parameter Directory Traversal Vulnerability

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].

Codeorigin Sysax Multi Server 'file' Parameter Directory Traversal Vulnerability

References:

• Sysax Directory Traversal Exploit (Craig Freyman)
  
• Sysax Multi Server Homepage (Codeorigin)