[转载]Easy Message Board路径泄露和命令执行漏洞

  信息来源：www.securiteam.com

Summary
A new vulnerability was identified in Easy Message Board, which may be exploited by attackers to compromise a vulnerable web server. This flaw is due to an input validation error in the "easymsgb.pl" script where the variable print that is put under "open()", does not have a control of data, which may be exploited by a remote attacker to execute arbitrary commands with the privileges of the web server.

Credit:
The information has been provided by SoulBlack Group.
The original article can be found at: http://www.soulblack.com.ar/repo/papers/easymsgb_advisory.txt

Details
Exploits:
The following URLs can be used to trigger the vulnerability:
http://SITE/cgi-bin/emsgb/easyms ... ../../../etc/passwd
http://SITE/cgi-bin/emsgb/easymsgb.pl?print=|id|