OSVDB ID: 29977

Title: Open Meetings Filing Application entityproperties/session.php PROJECT_ROOT Parameter Remote File Inclusion

Info

Disclosure

Oct 21, 2006

Discovery

Unknown

Dates

Exploit

Oct 21, 2006

Solution

Unknown

Description

Open Meetings Filing Application contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to entityproperties/session.php not properly sanitizing user input supplied to the 'PROJECT_ROOT' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Government Open Code Collaborative

Open Meetings Filing Application

Unknown or Unspecified

References

CVE ID: 2006-5517 (see also: NVD)
Bugtraq ID: 20656
Secunia Advisory ID: 22503
Exploit Database: 2609
Milw0rm: 2609
ISS X-Force ID: 29773
Related OSVDB ID: 29975 29976 29978
VUPEN Advisory: ADV-2006-4144
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-10/0358.html
Vendor URL: http://www.gocc.gov/groups/RI_SOS/software/open_meetings_filing_app

Credit

xoron - x0r0nhotmail.com -

Direct URL: http://osvdb.org/29977