OSVDB ID: 39092

Title: SpeedTech PHP Library stphpradiogroup.php STPHPLIB_DIR Parameter Remote File Inclusion

Info

Disclosure

Sep 03, 2007

Discovery

Unknown

Dates

Exploit

Sep 03, 2007

Solution

Unknown

Description

Speedtech STPHPLib contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to 'stphpradiogroup.php' not properly sanitizing user input supplied to the 'STPHPLIB_DIR' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
Disclosure: Uncoordinated Disclosure
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

SpeedTech

STPHPLib

0.8.0

References

CVE ID: 2007-4738 (see also: NVD)
Bugtraq ID: 25525
Secunia Advisory ID: 26658
ISS X-Force ID: 36417
Related OSVDB ID: 38929 38930 38931 39073 39074 39075 39076 39077 39078 39079 39080 39081 39082 39083 39084 39085 39086 39087 39088 39089 39090 39091 39093 39094 39095 39096 39097 39098 39099 39100 39101 39102 39103 39104 39105
Exploit Database: 4358
Milw0rm: 4358
Vendor URL: http://stphplib.sourceforge.net/

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/39092