Uebimiau Webmail远程攻击漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1113047 漏洞类型 未知
发布时间 2007-05-29 更新时间 2007-06-13
CVE编号 CVE-2007-3171 CNNVD-ID CNNVD-200706-175
漏洞平台 PHP CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/30098
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200706-175
|漏洞详情
UebimiauWebmail中存攻击漏洞。远程攻击者可以借助一个(1)smarty或(2)selected_theme参数的无效值,发送直接请求到demo/pop3/error.php文件,从而获得敏感信息。这会在不同的错误信息中显示路径。
|漏洞EXP
source: http://www.securityfocus.com/bid/24210/info
 
Uebimiau is prone to multiple input-validation vulnerabilities, including cross-site scripting issues and an information-disclosure issue, because the application fails to properly sanitize user-supplied input.
 
Attackers can exploit these issues to steal cookie-based authentication credentials, to control how the site is rendered to the user, or to gain access to information that could aid in further attacks.
 
Uebimiau 2.7.2 and 2.7.10 are vulnerable; other versions may also be affected. 

http://www.example.org/demo/pop3/error.php?smarty=test 
http://www.example.org/demo/pop3/error.php?selected_theme=test
|参考资料

来源:XF
名称:uebimiau-error-information-disclosure(34554)
链接:http://xforce.iss.net/xforce/xfdb/34554
来源:BID
名称:24210
链接:http://www.securityfocus.com/bid/24210
来源:FULLDISC
名称:20070528UebimiauWebmailMultipleVulnerabilities
链接:http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063629.html