BibORB Arbitrary File Upload

2005-02-17T08:08:40
ID OSVDB:13916
Type osvdb
Reporter Patrick Hof(securitysurf25.de)
Modified 2005-02-17T08:08:40

Description

Vulnerability Description

BibORB contains a flaw that may allow a remote attacker to upload arbitrary files. The issue is due to program not properly sanitizing user input supplied to the upload file. This may allow an attacker to include a file from a remote host that contains arbitrary commands which is linked with standard icons of a PDF or PS file. Users may be fooled to click the icon and download malicious code instead of the desired PDF or PS file.

Solution Description

Upgrade to version 1.3.3 RC1 or higher, as it has been reported to fix this vulnerability. In addition, BibORB has released a patch for 1.3.2 versions.

Short Description

BibORB contains a flaw that may allow a remote attacker to upload arbitrary files. The issue is due to program not properly sanitizing user input supplied to the upload file. This may allow an attacker to include a file from a remote host that contains arbitrary commands which is linked with standard icons of a PDF or PS file. Users may be fooled to click the icon and download malicious code instead of the desired PDF or PS file.

References:

Vendor URL: http://biborb.glymn.net/ Vendor Specific Solution URL: http://biborb.glymn.net/doku.php?id=download Security Tracker: 1013228 Secunia Advisory ID:14155 Related OSVDB ID: 13915 Related OSVDB ID: 13914 Related OSVDB ID: 13912 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-02/0345.html Keyword: BibTeX CVE-2005-0254