lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [day] [month] [year] [list] 
Message-ID: <20060119191327.GC11208@osdn.org.ua>
Date: Thu, 19 Jan 2006 21:13:27 +0200
From: Michael Shigorin <mike@...n.org.ua>
To: bugtraq@...urityfocus.com
Cc: security@...o3.org
Subject: Re: IRM 015: File system path disclosure on TYPO3 Web Content Manager

On Thu, Jan 19, 2006 at 10:30:36AM -0000, Advisories wrote:
> File system path disclosure on TYPO3 Web Content Manager
> Vulnerablity Type / Importance: Information Leakage / Medium

Hm, since when path disclosure is "medium importance"?

> The following files were found to disclose the application path:
> http://hostname/typo3/t3lib/thumbs.php
> http://hostname/tslib/showpic.php
> http://hostname/t3lib/stddb/tables.php
> Tested Versions:
> Version 3.7.1 

The first one verified as applicable to 3.8.1 too (easily
avoidable by adding IP- or user-based access restriction
to /typo3 since that's administrative backend anyways),
and the rest doesn't disclose anything on properly configured
at least display_errors-wise webserver, which is a documented
recommended (and often reiterated everywhere) PHP setup.

> Workarounds:
> IRM are not aware of any workarounds for this issue.

Ouch. :)

-- 
 ---- WBR, Michael Shigorin <mike@...linux.ru>
  ------ Linux.Kiev http://www.linux.kiev.ua/

Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ