bitweaver users/index.php sort_mode Information Disclosure

2006-06-16T05:49:04
ID OSVDB:26589
Type osvdb
Reporter rgod(rgod@autistici.org)
Modified 2006-06-16T05:49:04

Description

Vulnerability Description

Bitweaver contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when invalid input is passed to the 'sort_mode' parameter in /users/index.php, which will disclose full installation path and SQL table informations resulting in a loss of confidentiality.

Technical Description

Successful exploitation requires that the 'mod_mime' module is installed in Apache server.

Solution Description

Upgrade to version 1.3.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Bitweaver contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when invalid input is passed to the 'sort_mode' parameter in /users/index.php, which will disclose full installation path and SQL table informations resulting in a loss of confidentiality.

Manual Testing Notes

http://[target]/[path]/users/index.php?sort_mode=suntzuuuuuuuuuuuuu

References:

Vendor URL: http://www.bitweaver.org/ Secunia Advisory ID:20695 Related OSVDB ID: 26590 Related OSVDB ID: 26588 Related OSVDB ID: 26587 Other Advisory URL: http://milw0rm.com/exploits/1918 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0348.html FrSIRT Advisory: ADV-2006-2405 CVE-2006-3104