Hassan目录遍历漏洞

42次阅读
没有评论

Hassan目录遍历漏洞

漏洞ID 1106028 漏洞类型 路径遍历
发布时间 2000-10-07 更新时间 2005-05-02
Hassan目录遍历漏洞CVE编号 CVE-2000-0921
Hassan目录遍历漏洞CNNVD-ID CNNVD-200012-091
漏洞平台 CGI CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/20281
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200012-091
|漏洞详情
Hassan咨询的shop.cgi购物栏程序存在目录遍历漏洞。远程攻击者借助页参数的..(点点)攻击读取任意文件。
|漏洞EXP
source: http://www.securityfocus.com/bid/1777/info

The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will display the specified file:

http://target/cgi-bin/shop.cgi/page=../../../path/filename.ext

Successful exploitation could lead to a remote intruder gaining read access to any known file.
|参考资料

来源:XF
名称:hassan-shopping-cart-dir-traversal
链接:http://xforce.iss.net/static/5342.php
来源:BID
名称:1777
链接:http://www.securityfocus.com/bid/1777
来源:OSVDB
名称:1596
链接:http://www.osvdb.org/1596
来源:BUGTRAQ
名称:20001007SecurityAdvisory:HassanConsulting’sshop.cgiDirectoryTraversalVulnerability.
链接:http://archives.neohapsis.com/archives/bugtraq/2000-10/0115.html

相关推荐: Multiple Vendor HTTP Server IPv6 Socket IPv4 Mapped Address Handling Vulnerability

Multiple Vendor HTTP Server IPv6 Socket IPv4 Mapped Address Handling Vulnerability 漏洞ID 1099355 漏洞类型 Design Error 发布时间 2003-10-29 …

正文完
 0