88503 – www-apps/phpbb: File Upload Script 'up.php' Lets Remote Users Upload Arbitrary Files

Bug 88503 - www-apps/phpbb: File Upload Script 'up.php' Lets Remote Users Upload Arbitrary Files

Summary: www-apps/phpbb: File Upload Script 'up.php' Lets Remote Users Upload Arbitrar...

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All All

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:	http://securitytracker.com/alerts/200...
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2005-04-09 12:39 UTC by Jean-François Brunette (RETIRED)
Modified:	2005-04-10 07:47 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Jean-François Brunette (RETIRED) gentoo-dev

2005-04-09 12:39:30 UTC

Don't know if it applies...
---------------------------------------
Version(s): 1.1

Description:  A vulnerability was reported in the 'File Upload Script' phpBB MOD. A remote user can upload files with arbitrary content and filename extensions.

The 'up.php' script does not restrict filename extensions or file contents. A remote user can upload an arbitrary file with a '.php' file extension. Then, the remote user can invoke the uploaded file to execute arbitrary PHP code and operating system commands on the target system with the privileges of the target web service.

Impact:  A remote user can upload arbitrary PHP code to the target system and then execute the code with the privileges of the target web service.

Solution:  No solution was available at the time of this entry.

Comment 1 Thierry Carrez (RETIRED) gentoo-dev

2005-04-10 07:47:10 UTC

This mod is not in the phpBB shipped in portage.