[ advisories | exploits | discussions | news | conventions | security tools | texts & papers ]
 main menu
- feedback
- advertising
- privacy
- FightAIDS
- newsletter
- news
 
 discussions
- read forum
- new topic
- search
 

 meetings
- meetings list
- recent additions
- add your info
 
 top 100 sites
- visit top sites
- sign up now
- members
 
 webmasters

- add your url
- add domain
- search box
- link to us

 
 projects
- our projects
- free email
 
 m4d network
- security software
- secureroot
- m4d.com
Home : Advisories : CGIForum 1.0 Vulnerability

Title: CGIForum 1.0 Vulnerability
Released by: Markus Triska
Date: 20th November 2000
Printable version: Click here 
Hi,



Date: 2000/11/20

Affected Application: CGIForum 1.0

http://www.marcbrinkmann.de/inandonline/netz/CGIForum-1.0.tar.gz

Markus Triska





CGIForum is a free forum. We can set 'thesection' parameter to view

files on the vulnerable system with privileges of the user "nobody".



This is caused from OutputHTMLFile function in cgiforum.pl script where $section (= $thesection )  isn't checked (never besides in this script).



e.g.:

http://127.0.0.1/cgi-bin/cgiforum.pl?thesection=../../../../../../etc/passwd%00



The author is informed.







==================================

zorgon 

http://www.nightbird.free.fr

----------------------

Do you do Linux? :)

Get your FREE @linuxstart.com email address at: http://www.linuxstart.com






(C) 1999-2000 All rights reserved.