Leif M. Wright Web Blog File Disclosure Vulnerability
BID:9517
Info
Leif M. Wright Web Blog File Disclosure Vulnerability
| Bugtraq ID: | 9517 |
| Class: | Access Validation Error |
| CVE: |
CVE-2004-2127 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 20 2004 12:00AM |
| Updated: | Jul 12 2009 02:06AM |
| Credit: | Discovery is credited to Zone-h Security Labs. |
| Vulnerable: |
Leif M. Wright Web Blog 1.1 |
| Not Vulnerable: |
Leif M. Wright Web Blog 1.1.5 |
Discussion
Leif M. Wright Web Blog File Disclosure Vulnerability
Web Blog is prone to a file disclosure vulnerability. Remote attackers may gain access to files on the system hosting the server that reside outside of the server root by submitting a malicious request that contains directory traversal sequences. This would permit the attacker to access files that are readable by the server and could disclose sensitive information.
Web Blog is prone to a file disclosure vulnerability. Remote attackers may gain access to files on the system hosting the server that reside outside of the server root by submitting a malicious request that contains directory traversal sequences. This would permit the attacker to access files that are readable by the server and could disclose sensitive information.
Exploit / POC
Leif M. Wright Web Blog File Disclosure Vulnerability
This issue may be exploited with a web browser. The following example was provided:
http://www.example.com/directory/blog.cgi?submit=ViewFile&month=[month]&year=[year]&file=/../../../../../../../../../../../../../../../../etc/passwd
This issue may be exploited with a web browser. The following example was provided:
http://www.example.com/directory/blog.cgi?submit=ViewFile&month=[month]&year=[year]&file=/../../../../../../../../../../../../../../../../etc/passwd
Solution / Fix
Leif M. Wright Web Blog File Disclosure Vulnerability
Solution:
The vendor has released version 1.1.5 to address this issue.
Leif M. Wright Web Blog 1.1
Solution:
The vendor has released version 1.1.5 to address this issue.
Leif M. Wright Web Blog 1.1
-
Leif M. Wright Web Blog 1.1.5
http://leifwright.com/scripts/zips/blog.zip
References
Leif M. Wright Web Blog File Disclosure Vulnerability
References:
References:
- Web Blog Homepage (Leif M. Wright)
- ZH2004-01SA (security advisory): Web Blog 1.1 Remote arbitrary files retrieving (ZetaLabs
)