OSVDB ID: 17750

Title: Mark Kronsbein MyGuestbook form.inc.php3 lang Parameter Remote File Inclusion

Info

Disclosure

Jul 05, 2005

Discovery

Unknown

Dates

Exploit

Jul 05, 2005

Solution

Unknown

Description

Mark Kronsbein MyGuestbook, contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to "form.inc.php3" not properly sanitizing user input supplied to the "lang" variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Mark Kronsbein	MyGuestbook	0.9.5
		0.6.1

References

Security Tracker: 1014387
Bugtraq ID: 14155
Secunia Advisory ID: 15927
CVE ID: 2005-2162 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-07/0040.html
Vendor URL: http://html-design.com/
Other Advisory URL: http://www.soulblack.com.ar/repo/papers/advisory/myguestbook_advisory.txt

Credit

SoulBlack - Security Research - groupsoulblack.com.ar - SoulBlack - Security Research

Direct URL: http://osvdb.org/17750