cPanel Login Script Remote Command Execution Vulnerability
BID:9855
Info
cPanel Login Script Remote Command Execution Vulnerability
| Bugtraq ID: | 9855 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 12 2004 12:00AM |
| Updated: | Mar 12 2004 12:00AM |
| Credit: | Discovery is credited to Arab VieruZ <[email protected]>. |
| Vulnerable: |
cPanel cPanel 9.1 cPanel cPanel 9.0 cPanel cPanel 8.0 cPanel cPanel 7.0 cPanel cPanel 6.4.2 .STABLE_48 cPanel cPanel 6.4.2 cPanel cPanel 6.4.1 cPanel cPanel 6.4 cPanel cPanel 6.2 cPanel cPanel 6.0 cPanel cPanel 5.3 cPanel cPanel 5.0 |
| Not Vulnerable: | |
Discussion
cPanel Login Script Remote Command Execution Vulnerability
A potential remote command execution vulnerability has been discovered in the cPanel application. This issue occurs due to insufficient sanitization of externally supplied data to the login script. An attacker may exploit this problem by crafting a malicious URI request for the affected script; the attacker may then supply shell metacharacters and arbitrary commands as a value for the affected variable.
A potential remote command execution vulnerability has been discovered in the cPanel application. This issue occurs due to insufficient sanitization of externally supplied data to the login script. An attacker may exploit this problem by crafting a malicious URI request for the affected script; the attacker may then supply shell metacharacters and arbitrary commands as a value for the affected variable.
Exploit / POC
cPanel Login Script Remote Command Execution Vulnerability
No exploit is required.
The following proof of concept has been supplied:
http://www.example.com.com:2082/login/?user=|"`id`"|
No exploit is required.
The following proof of concept has been supplied:
http://www.example.com.com:2082/login/?user=|"`id`"|
Solution / Fix
cPanel Login Script Remote Command Execution Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
cPanel Login Script Remote Command Execution Vulnerability
References:
References:
- cPanel Homepage (cPanel)
- Cpanel 9.1.0 have a problem ? (Arab VieruZ