Linksys Web Camera Software next_file参数文件泄露漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1107985 漏洞类型 输入验证
发布时间 2004-06-07 更新时间 2006-01-25
CVE编号 CVE-2004-2507 CNNVD-ID CNNVD-200412-1217
漏洞平台 CGI CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/24175
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200412-1217
|漏洞详情
LinksysWebCamera软件提供基于WEB的图象浏览。LinksysWebCamera在处理用户请求时存在输入验证漏洞,远程攻击者可以利用此漏洞以Web进程权限查看系统上任意文件内容。LinksysWebCamera的main.cgi程序对用户提交的'next_file'参数缺少充分的检查过滤,如果提交系统文件名作为参数,攻击者就可读取相应文件的内容。
|漏洞EXP
source: http://www.securityfocus.com/bid/10476/info

It is reported that Linksys Web Camera software is prone to a remote file disclosure vulnerability that may allow a remote attacker to disclose sensitive files.

Linksys Web Camera software version 2.10 is reportedly prone to this issue, however, it is possible that other versions are affected as well.

http://www.example.com/main.cgi?next_file=/etc/passwd
|参考资料

来源:XF
名称:linksys-webcamera-file-include(16339)
链接:http://xforce.iss.net/xforce/xfdb/16339
来源:BID
名称:10476
链接:http://www.securityfocus.com/bid/10476
来源:OSVDB
名称:7112
链接:http://www.osvdb.org/7112
来源:SECTRACK
名称:1010489
链接:http://securitytracker.com/id?1010489
来源:SECUNIA
名称:11811
链接:http://secunia.com/advisories/11811/
来源:BUGTRAQ
名称:20040606LinksysWebCameraFileInclusionVuln
链接:http://archives.neohapsis.com/archives/bugtraq/2004-06/0103.html
来源:NSFOCUS
名称:6571
链接:http://www.nsfocus.net/vulndb/6571