[19147] in bugtraq
WebSPIRS CGI script "show files" Vulnerability.
daemon@ATHENA.MIT.EDU (UkR-XblP�)
Mon Feb 12 17:19:09 2001
Mime-Version: 1.0
Content-Type: text/plain; charset="KOI8-R"
Content-Transfer-Encoding: 8bit
Message-Id: <web-16665124@backend2.aha.ru>
Date: Mon, 12 Feb 2001 17:15:48 +0300
Reply-To: UkR-XblP� <cuctema@OK.RU>
From: UkR-XblP� <cuctema@OK.RU>
To: BUGTRAQ@SECURITYFOCUS.COM
-----------UkR security team advisory #1 ------------
WebSPIRS CGI script "show files" Vulnerability.
--------------------------------------------------
Name: WebSPIRS CGI script "show files" Vulnerability.
Date: 27.01.2001
About: WebSPIRS is SilverPlatter's Information Retrieval
System for the World Wide Web (WWW). It is a common gateway
interface (CGI) application which allows any forms-capable
browser, such as Netscape, to search SilverPlatter (SP)
Electronic Reference Library (ERL) databases available over
the Internet. http://www.silverplatter.com.
Problem: Problem lyes in incorrect validation of user
submitted-by-browser information, that can show any file of
the system where script installed.
Aothor: UkR-XblP
Exploit: www.target.com/cgi-bin/webspirs.cgi?sp.nextform=../../../../../../path/to/file
Affected: affected in all version of this script
Get your free e-mail address at http://www.zmail.ru
