pngcntrp kaiseki.cgi Arbitrary Command Execution

2005-07-08T08:53:46
ID OSVDB:17784
Type osvdb
Reporter blahplok()
Modified 2005-07-08T08:53:46

Description

Vulnerability Description

pngcntrp contains a flaw that may allow a malicious user to execute arbitrary commands. This flaw exists because the application does not validate input upon submission to the kaiseki.cgi script It is possible that the flaw may allow arbitrary command execution resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

pngcntrp contains a flaw that may allow a malicious user to execute arbitrary commands. This flaw exists because the application does not validate input upon submission to the kaiseki.cgi script It is possible that the flaw may allow arbitrary command execution resulting in a loss of integrity.

Manual Testing Notes

http://[target]/cgi-bin/kaiseki.cgi?|command|

References:

Vendor URL: http://www.aurora.dti.ne.jp/~zom/png/counter/ver2/plus.html Security Tracker: 1014426 Secunia Advisory ID:15981 Packet Storm: http://packetstormsecurity.org/0507-exploits/kaiseki.txt CVE-2005-2205