Info

Disclosure

Feb 03, 2004

Discovery

Unknown

Dates

Exploit

Feb 03, 2004

Solution

Unknown

Description

X-Cart contains a flaw that may allow a remote attacker to execute arbitrary commands. The problem is that the "upgrade.php" script does not validate user-supplied inputto the "perl_binary" variable. With a specially crafted URL request a remote attacker could execute arbitrary commands with the privileges of the Web server resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Qualiteam Corporation

X-Cart

3.4.3

References

Secunia Advisory ID: 10783
ISS X-Force ID: 15034
CVE ID: 2004-0241 (see also: NVD)
Related OSVDB ID: 3808 3810 3811
Bugtraq ID: 9560
Other Advisory URL: http://marc.theaimsgroup.com/?l=bugtraq&m=107582648326448&w=2
Vendor URL: http://www.x-cart.com/

Credit

Philip - securityfocusmagicwebsolutions.co.uk -

Direct URL: http://osvdb.org/36218