Help Center Live osTicket远程文件包含漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109242 漏洞类型 路径遍历
发布时间 2005-11-14 更新时间 2006-09-05
CVE编号 CVE-2005-3639 CNNVD-ID CNNVD-200511-207
漏洞平台 PHP CVSS评分 7.5
|漏洞来源
https://www.exploit-db.com/exploits/26502
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200511-207
|漏洞详情
HelpCenterLive是实时聊天和社区支持系统。HelpCenterLive2.0.3之前版本的操作系统"凭单"模块中的PHP文件包含漏洞,可让远程攻击者通过文件参数访问或包含任意文件,这可能是由于目录遍历漏洞引起的。
|漏洞EXP
source: http://www.securityfocus.com/bid/15404/info

Help Center Live is prone to a local file include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.

An attacker may leverage this issue to disclose sensitive information. This may help with further attacks on the affected computer.

It should be noted that this issue may also be leveraged to read arbitrary files on an affected computer with the privileges of the Web server.

http://www.example.com/support/module.php?module=osTicket&file=/../../../../../etc/passwd
|参考资料

来源:VUPEN
名称:ADV-2005-2451
链接:http://www.frsirt.com/english/advisories/2005/2451
来源:SECUNIA
名称:17580
链接:http://secunia.com/advisories/17580
来源:BID
名称:15404
链接:http://www.securityfocus.com/bid/15404