lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite for Android: free password hash cracker in your pocket
[<prev] [next>] [day] [month] [year] [list]
Message-ID: <20031026154533.12402.qmail@hackermail.com>
Date: Sun, 26 Oct 2003 23:45:33 +0800
From: "Dr`Ponidi Haryanto" <drponidi@...kermail.com>
To: bugtraq@...urityfocus.com
Subject: Dansie Shopping Cart Discloses Installation Path to Remote Users


Indonesia Security Development Team Advisory


Dansie Shopping Cart Discloses Installation Path to Remote Users
================================================================

     Advisory Name: Dansie Shopping Cart Discloses Installation Path to Remote Users
      Release Date: 5:21 AM 10/20/03
       Application: Dansie Shopping cart
            Author: Dr`Ponidi <drponidi@...oak.org>	
       Discover by: Dr`Ponidi <drponidi@...oak.org>
  Acknowledgments : Vulnerability discovery, exploit code, and advisory by Dr`Ponidi
     Vendor Status: The vendor has been contacted and a patch is not yet produced
        Vendor URL: http://www.dansie.net/cart.html
         Reference: http://drponidi.5u.com/advisory.htm
         Greetz to: #indohack #k-elektronik #c|c #dhegleng @ dal.net


[Details]
A remote user can reportedly send request to cause the system
to display an error message that indicates the installation path.
It's possible to make a malformed http request for many files in
Dansie Shopping Cart and in doing so trigger an error.
The resulting error message will disclose potentially sensitive installation
path information to the remote attacker.


[Proof of Concept]
http://www.site.com/cgi-bin/cart.pl?db='


[Suggestions]
Filter all files.


[About Indonesia Security Development Team]
Indonesia Security Development Team, research and develop intelligent, advanced application
security assessment.Based in Indonesia, Indonesia Security Development Team offers best of
breed security consulting services, specialising in shopping carts software and network
security assessments.We provides security information and patches for use by the entire
security network community.

This information is provided freely to all interested parties and may be redistributed
provided
that it is not altered in any way, Author is appropriately credited and the document retains.

Indonesia Security Development Team Advisory:
http://drponidi.5u.com/advisory.htm

________________________________________________________________
Dr`Ponidi <drponidi@...oak.org>
Original document can be fount at http://drponidi.5u.com/advisory.htm


-- 
_______________________________________________
Get your free email from http://www.hackermail.com

Powered by Outblaze


Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ