Warcraft III Replay Parser index.PHP 未明漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1109996 漏洞类型 输入验证
发布时间 2006-03-31 更新时间 2006-04-03
CVE编号 CVE-2006-1584 CNNVD-ID CNNVD-200604-012
漏洞平台 PHP CVSS评分 6.4
|漏洞来源
https://www.exploit-db.com/exploits/27537
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200604-012
|漏洞详情
PHP版的魔兽争霸IIIreplay解析器(1.8c版)的索引文件(index.php)存在不确定的漏洞,可使远程攻击者通过page参数注入任意Web脚本或HTML,可能与fopen函数或文件上传有关。公布后的分析建议(通过通用漏洞披露)不要在此产品中使用page参数,而且id可能也是受影响的参数。
|漏洞EXP
source: http://www.securityfocus.com/bid/17334/info

Warcraft III Replay Parser for PHP is prone to a remote file-include vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input.

An attacker can exploit this issue to include an arbitrary remote file containing malicious PHP code and execute it in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system; other attacks are also possible.

Warcraft III Replay Parser for PHP 1.8c is reported to be vulnerable. Other versions may be affected as well.

http://www.example.com/[path]/index.php?page=evilcode.txt?&cmd=uname -a
|参考资料

来源:BID
名称:17334
链接:http://www.securityfocus.com/bid/17334
来源:BUGTRAQ
名称:20060331WarcraftIIIReplayParserScriptRemoteCommandExucetionVulnerabilityAndCross-SiteScriptingAttacking
链接:http://www.securityfocus.com/archive/1/archive/1/429535/100/0/threaded
来源:XF
名称:warcraft3-replay-parser-index-file-include(25686)
链接:http://xforce.iss.net/xforce/xfdb/25686