Sårbarhed Detalje Syn
Legend :
critical
high
medium
low
other
| id | 43098 |
|---|
| Risiko | other |
|---|
| Familie | CGI abuses |
|---|
| Kategori | attack |
|---|
| Navn | Zen Cart extras/curltest.php Information Disclosure |
|---|
| Sammenfatning | Tries to read a local file |
|---|
| Beskrivelse | Synopsis :
The remote web server contains a PHP script that can be abused to
disclose the contents of local files.
Description :
The installed version of Zen Cart includes a test script,
'extras/curltest.php', intended for testing that the curl PHP library
is installed and working properly. It fails, though, to restrict
access and can be abused to access arbitrary URLs, including local
files via the ''file'' protocol handler.
An anonymous remote attacker can abuse this issue to view the contents
of arbitrary files on the remote host, subject to the privileges under
which the web server operates, or to access arbitrary URLs, such as
from hosts on an internal network that might otherwise be unavailable
to the attacker.
See also :
http://www.securityfocus.com/archive/1/508340
http://www.zen-cart.com/forum/showthread.php?t=142784
Solution :
Remove the 'extras' directory from the affected install.
Risk factor :
Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N)
|
|---|
| CVE |
CVE-2009-4321 |
| Bugtraq |
37283 |
| Copyright |
(C) 2009 Tenable Network Security, Inc. |
|
|