Info

Last Modified

6 months ago

Percent Complete

100%

Disclosure

Dec 29, 2005

Discovery

Nov 13, 2005

Dates

Exploit

Dec 29, 2005

Solution

Unknown

Description

Gmailsite/GFHost contains a flaw that may allow a remote attacker to display the contents of arbitrary files. The issue is due to the 'index.php' script not properly sanitizing user input supplied to the 'lng'variable. This may allow an attacker to include a file from a remote host, resulting in a loss of confidentiality.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Available
OSVDB: Web Related

Technical

This vulnerability is only present when the magic_quotes_gpc PHP option is 'off'.

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

GmailSite	GmailSite	1.0.4
		1.0.3
		1.0.2
		1.0.1
		1.0

GFHost	GFHost	0.4.2
		0.4.1
		0.4
		0.3
		0.2
		0.1

References

Bugtraq ID: 16081
Vendor Specific News/Changelog Entry: http://foros.ojobuscador.com/tema1936.html
Related OSVDB ID: 22083
Other Advisory URL: http://lostmon.blogspot.com/2005/12/gmailsite-variable-cross-site.html
ISS X-Force ID: 23912
Secunia Advisory ID: 18155
CVE ID: 2005-4627 (see also: NVD)
Vendor URL: http://www.gmailsite.com/

Manual Testing Notes

Credit

Secunia Security Advisories - sec-advsecunia.com - Secunia

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches