MP3Mystic Server Arbitrary File Access

2001-05-07T00:00:00
ID OSVDB:1815
Type osvdb
Reporter nemesystm(neme-dhc@hushmail.com)
Modified 2001-05-07T00:00:00

Description

Vulnerability Description

MP3Mystic contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to the server not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the URI.

Solution Description

Upgrade to version 1.04b3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

MP3Mystic contains a flaw that allows a remote attacker to access arbitrary files outside of the web path. The issue is due to the server not properly sanitizing user input, specifically traversal style attacks (../../) supplied via the URI.

Manual Testing Notes

http://[victim]/../../../scandisk.log

References:

Vendor URL: http://mp3mystic.com Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-05/0046.html Keyword: Directory Traversal ISS X-Force ID: 6504 CVE-2001-0574 Bugtraq ID: 2699