IdealBB Multiple Method Arbitrary File Upload

2006-05-07T04:32:36
ID OSVDB:25456
Type osvdb
Reporter CodeScan Labs(advisories@codescan.com)
Modified 2006-05-07T04:32:36

Description

Vulnerability Description

IdealBB contains a flaw that may allow a malicious user to upload arbitrary files. The issue is triggered because there are four points in the application where data submitted by the user is not sanitised correctly. It is possible that the flaw allows an attacker to upload files with a '.asa' file extenstion, which may allow execution of arbitrary code on the server, resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

IdealBB contains a flaw that may allow a malicious user to upload arbitrary files. The issue is triggered because there are four points in the application where data submitted by the user is not sanitised correctly. It is possible that the flaw allows an attacker to upload files with a '.asa' file extenstion, which may allow execution of arbitrary code on the server, resulting in a loss of integrity.

References:

Vendor URL: http://www.idealscience.com/ Secunia Advisory ID:20035 Related OSVDB ID: 25457 Related OSVDB ID: 25455 Related OSVDB ID: 25458 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-05/0203.html ISS X-Force ID: 26353 Generic Informational URL: http://www.security-assessment.com/Whitepapers/0x00_vs_ASP_File_Uploads.pdf FrSIRT Advisory: ADV-2006-1729 CVE-2006-2319 CVE-2006-2318 Bugtraq ID: 17920