OSVDB ID: 10538

Title: Yves Goergen BlackBoard Internet Newsboard System checkdb.inc.php libpath Variable Remote File Inclusion

Info

Disclosure

Oct 06, 2004

Discovery

Unknown

Dates

Exploit

Oct 06, 2004

Solution

Unknown

Description

Yves Goergen BlackBoard Internet Newsboard contains a flaw that may allow a malicious user to execute arbitrary commands on the server. The issue is triggered when "checkdb.inc.php" does not validate user supplied input to the $libpath variable. This allows an attacker to include an arbitrary file from a remote server which contains commands that will be executed with the same privileges as the running web server.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Upgrade to version 1.5.1h or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Yves Goergen

BlackBoard Internet Newsboard

1.5.1

References

Security Tracker: 1011551
Secunia Advisory ID: 12757
CVE ID: 2004-1582 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-10/0044.html
http://archives.neohapsis.com/archives/bugtraq/2004-10/0057.html
Other Advisory URL: http://blackboard.unclassified.de/70,1#1031
Vendor URL: http://blackboard.unclassified.de/download.php
Keyword: Remote File Inclusion

Credit

Lin Xiaofeng - cracklovegmail.com -

Direct URL: http://osvdb.org/36218