20316 : Snoopy _httpsrequest() Function Shell Command Injection
Printer | http://osvdb.org/20316 | Email This | Edit Vulnerability

Views This Week

3

Views All Time

46

Info

Last Modified

2 months ago

Percent Complete

55%

Disclosure

Oct 25, 2005

Discovery

Oct 10, 2005

Dates

Exploit

Unknown

Solution

Unknown

This Entry needs help! It is only 55% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Description

(Description Provided by CVE) : The _httpsrequest function in Snoopy 1.2, as used in products such as (1) MagpieRSS, (2) WordPress, (3) Ampache, and (4) Jinzora, allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTPS URL to an SSL protected web page, which is not properly handled by the fetch function.

Classification

Impact: Loss of Integrity
Solution: Upgrade
Disclosure: Vendor Verified

Solution

Upgrade Snoopy to version 1.2.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Snoopy is integrated into several other software packages. The following packages and versions are known to contain the upgraded version of Snoopy:
MagpieRSS - 0.72
sux0r - 1.6
Jinzora - 2.3.6
Ampache - 3.3.1.5

Products

Ampache

Ampache

3.3.1.4

Snoopy

Snoopy

1.2

MagpieRSS	MagpieRSS	0.71
		0.71.1

sux0r

sux0r

1.5

Jinzora

Jinzora

2.3.5

References

Security Tracker: 1015104
Bugtraq ID: 15213
Secunia Advisory ID: 17330 17455 17779 17887
CVE ID: 2005-3330 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0521.html
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0561.html
Vendor URL: http://magpierss.sourceforge.net/
http://snoopy.sourceforge.net
http://www.ampache.org/
Vendor Specific News/Changelog Entry: http://sourceforge.net/forum/forum.php?forum_id=546886
http://sourceforge.net/project/shownotes.php?release_id=368750&group_id=55691
http://sourceforge.net/project/shownotes.php?release_id=375385
Keyword: SEC-CONSULT Security Advisory 20051025-0

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

User Status

Account
- Login
- Sign-Up

Quick Searches

Advertisements

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

© Copyright 2008 Open Source Vulnerability Database (OSVDB), All Rights Reserved.
Privacy Statement - Terms of Use