Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug
Bug#: 130295
Alias:
Product:
Component:
Status: RESOLVED
Resolution: FIXED
Assigned To: Gentoo Security <security@gentoo.org>
Hardware:
OS:
Version:
Priority:
Severity:
Reporter: Sune Kloppenborg Jeppesen <jaervosz@gentoo.org>
Add CC:
CC:
Remove selected CCs
URL:
Summary:
Status Whiteboard:
Keywords:
Flags: Requestee:
 
 
  ()

Filename Description Type Creator Created Size Actions
Create a New Attachment (proposed patch, testcase, etc.) View All

Bug 130295 depends on: Show dependency tree
Bug 130295 blocks:

Additional Comments: (this is where you put emerge --info)


Not eligible to see or edit group visibility for this bug.






View Bug Activity   |   Format For Printing   |   XML   |   Clone This Bug

Description:   Opened: 2006-04-17 13:11 0000 
rgod has reported a vulnerability in phpWebSite, which can be exploited by
malicious people to disclose sensitive information and potentially compromise a
vulnerable system.

 Input passed to the "hub_dir" parameter in "index.php" isn't properly
verified, before it is used to include files. This can be exploited to include
arbitrary files from local resources.

 This can further be exploited to include arbitrary PHP scripts from an
external Windows share if the affected system is running PHP 5 on Windows.

 Successful exploitation requires that "magic_quotes_gpc" is disabled.

 The vulnerability has been reported in version 0.10.2. Other versions may also
be affected.

Solution:
Edit the source code to ensure that input is properly verified.

Provided and/or discovered by:
rgod

------- Comment #1 From Stefan Cornelius (RETIRED) 2006-04-19 08:47:52 0000 ------- 
web-apps, please provide fixed ebuilds, thanks

------- Comment #2 From Thierry Carrez (RETIRED) 2006-04-28 12:27:25 0000 ------- 
Patch available at :
http://phpwebsite.appstate.edu/index.php?module=announce&ANN_user_op=view&ANN_id=1116

web-apps please patch

------- Comment #3 From Renat Lumpau 2006-04-28 13:25:17 0000 ------- 
in CVS

------- Comment #4 From Sune Kloppenborg Jeppesen 2006-04-28 21:54:54 0000 ------- 
Thx Renat.

Arches please test and mark stable.

------- Comment #5 From Tobias Scherbaum 2006-04-29 02:04:47 0000 ------- 
ppc stable

------- Comment #6 From Jose Luis Rivero (yoswink) 2006-04-29 09:55:26 0000 ------- 
alpha stable.

------- Comment #7 From Mark Loeser 2006-04-29 21:31:59 0000 ------- 
x86 stable

------- Comment #8 From Jason Wever (RETIRED) 2006-04-30 10:37:25 0000 ------- 
Stable on SPARC

------- Comment #9 From Thierry Carrez (RETIRED) 2006-05-02 09:37:35 0000 ------- 
Ready for GLSA

------- Comment #10 From Sune Kloppenborg Jeppesen 2006-05-02 11:36:26 0000 ------- 
GLSA 200605-04
Bug List: (This bug is not in your last search results)   Show last search results      Search page      Enter new bug