phpBB Attachment Mod Directory Traversal Arbitrary File Access

2004-12-14T00:00:00
ID OSVDB:12332
Type osvdb
Reporter Paul Laudanski(zx@castlecops.com)
Modified 2004-12-14T00:00:00

Description

Vulnerability Description

phpBB Attachment Mod contains a flaw that allows a remote attacker to access files outside of the web path. The issue is due to Attachment Mod not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the "attachment_list[]" and "filename_list[]" variables.

Solution Description

Upgrade to version 2.3.11 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

phpBB Attachment Mod contains a flaw that allows a remote attacker to access files outside of the web path. The issue is due to Attachment Mod not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the "attachment_list[]" and "filename_list[]" variables.

References:

Secunia Advisory ID:13421 Related OSVDB ID: 12333 Other Advisory URL: http://www.opentools.de/board/viewtopic.php?t=3590 Mail List Post: http://marc.theaimsgroup.com/?l=bugtraq&m=110304269031484&w=2 ISS X-Force ID: 18437 CVE-2004-1399 Bugtraq ID: 11893