BlogTorrent btdownload.php 目录遍历漏洞-安全小百科

BlogTorrent btdownload.php 目录遍历漏洞

漏洞ID	1108318	漏洞类型	路径遍历
发布时间	2004-12-02	更新时间	2005-10-20
CVE编号	CVE-2004-1212	CNNVD-ID	CNNVD-200501-125
漏洞平台	PHP	CVSS评分	5.0

|漏洞来源

https://www.exploit-db.com/exploits/24796
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200501-125

|漏洞详情

BlogTorrent是PHP脚本设计的用于发布bittorrent资源的Web应用。BlogTorrentpreview0.8版本中的btdonload.php存在目录遍历漏洞。远程攻击者可通过在file参数中使用”..”的方式，获取主机上任意文件。

|漏洞EXP

source: http://www.securityfocus.com/bid/11795/info

It is reported that Blog Torrent is prone to a remote directory traversal vulnerability. This issue is due to a failure of the server process to properly filter user supplied input. 

Blog Torrent preview 0.8 version is affected by this vulnerability.

htp://www.example.com/battletorrent/btdownload.php?type=torrent&file=../../etc/passwd

|参考资料

来源:BID
名称:11795
链接:http://www.securityfocus.com/bid/11795
来源:BUGTRAQ
名称:20041202BlogTorrentpreview0.8-arbitaryfiledownload
链接:http://marc.theaimsgroup.com/?l=bugtraq&m;=110200971917165&w;=2
来源:XF
名称:blogtorrent-btdownloadphp-dir-traversal(18356)
链接:http://xforce.iss.net/xforce/xfdb/18356
来源:cvs.sourceforge.net接:http://cvs.sourceforge.net/viewcvs.py/battletorrent/btorrent_server/btdownload.php?r1=1.6&r2;=1.7

相关推荐: Windows NT PATH权限许可和访问控制漏洞

Windows NT PATH权限许可和访问控制漏洞漏洞ID 1207500 漏洞类型未知发布时间 1997-07-25 更新时间 1997-07-25 CVE编号 CVE-1999-1217 CNNVD-ID CNNVD-199707-037 漏洞平台…

文章版权归作者所有，未经允许请勿转载。

THE END