Info

Disclosure

Apr 01, 2006

Discovery

Unknown

Dates

Exploit

Apr 01, 2006

Solution

Unknown

Description

SQuery contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to igi2.php (not an underlying library) not properly sanitizing user input supplied to the 'libpath' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified, Vendor Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Squery Inc.

SQuery

4.5

References

Exploit Database: 1629
Milw0rm: 1629
Bugtraq ID: 17434
Secunia Advisory ID: 19482
CVE ID: 2006-1688 (see also: NVD)
VUPEN Advisory: ADV-2006-1284
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-04/0004.html
Vendor Specific News/Changelog Entry: http://archives.neohapsis.com/archives/bugtraq/2006-07/0427.html
Vendor URL: http://www.squery.com/

Credit

uid0 - uid0exploitercode.com - ExploiterCode.com

Direct URL: http://osvdb.org/24412