Info

Disclosure

Feb 14, 2005

Discovery

Unknown

Dates

Exploit

Feb 14, 2005

Solution

Unknown

Description

AWStats contains a flaw that may allow a malicious user to issue arbitrary commands under the webserver privileges. The issue is triggered when passing perl commands to the 'PluginMode' variable of the awstats.pl script via a colon (:) character. It is possible that the flaw may allow execution of arbitrary commands resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Upgrade to version 6.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Laurent Destailleur

AWStats

6.2

References

Related OSVDB ID: 13831 13833 13834
Secunia Advisory ID: 14299
CVE ID: 2005-0436 (see also: NVD)
CERT VU: 259785
Milw0rm: 817
Exploit Database: 817
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-02/0151.html
http://archives.neohapsis.com/archives/bugtraq/2005-02/0163.html
Vendor URL: http://awstats.sourceforge.net/
Generic Exploit URL: http://packetstormsecurity.nl/0501-exploits/AWStatsVulnAnalysis.pdf
Vendor Specific Advisory URL: http://www.debian.org/security/2005/dsa-682

Credit

ghc - ghcghc.ru -

Direct URL: http://osvdb.org/13832