Cherokee Web Server Traversal Arbitrary File Access

2001-12-29T22:23:23
ID OSVDB:16980
Type osvdb
Reporter Gobbles(gobbles@hushmail.com)
Modified 2001-12-29T22:23:23

Description

Vulnerability Description

Cherokee Web Server contains a flaw that allows a remote attacker to read files outside of the web path. The issue is due to the program not properly sanitizing user input in browser requests, specifically traversal style attacks (../../). Due to a related flaw, Cherokee does not properly drop privileges, allowing an attacker to read any files on the system with root permissions.

Solution Description

Upgrade to version 0.27 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Cherokee Web Server contains a flaw that allows a remote attacker to read files outside of the web path. The issue is due to the program not properly sanitizing user input in browser requests, specifically traversal style attacks (../../). Due to a related flaw, Cherokee does not properly drop privileges, allowing an attacker to read any files on the system with root permissions.

References:

Vendor URL: http://www.0x50.org/ Related OSVDB ID: 16981 Mail List Post: http://archives.neohapsis.com/archives/vulnwatch/2001-q4/0085.html ISS X-Force ID: 7799 CVE-2001-1432 CERT VU: 464827 Bugtraq ID: 3772