ID OSVDB:27674 Type osvdb Reporter SpC-x(spc-x@bsdmail.org) Modified 2006-06-13T16:31:54
Description
Vulnerability Description
boastMachine has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the vote.php script not properly sanitizing user input supplied to the 'bmc_dir' variable. However, subsequent evaluation indicates the variable is set to a static value in the config.php script and can not be manipulated by an attacker.
Solution Description
The vulnerability reported is incorrect. No solution required.
Short Description
boastMachine has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the vote.php script not properly sanitizing user input supplied to the 'bmc_dir' variable. However, subsequent evaluation indicates the variable is set to a static value in the config.php script and can not be manipulated by an attacker.
Vendor URL: http://boastology.com/
Other Advisory URL: http://www.security.nnov.ru/Ndocument122.html
Other Advisory URL: http://www.root-security.org/danger/boastMachine.txt
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0242.html
Mail List Post: http://attrition.org/pipermail/vim/2006-June/000855.html
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0388.html
Bugtraq ID: 18415
{"enchantments": {"score": {"vector": "NONE", "value": 7.5}, "vulnersScore": 7.5}, "bulletinFamily": "software", "affectedSoftware": [{"name": "BoastMachine", "operator": "eq", "version": "3.1"}], "references": [], "href": "https://vulners.com/osvdb/OSVDB:27674", "id": "OSVDB:27674", "title": "boastMachine vote.php bmc_dir Variable Remote File Inclusion", "history": [], "type": "osvdb", "cvss": {"score": 0.0, "vector": "NONE"}, "lastseen": "2017-04-28T13:20:24", "edition": 1, "hash": "734d027b5bae410708d58c50a08e74b8a14fee4e9fb1cfcc2b48cc00c65532cc", "objectVersion": "1.2", "reporter": "SpC-x(spc-x@bsdmail.org)", "description": "## Vulnerability Description\nboastMachine has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the vote.php script not properly sanitizing user input supplied to the 'bmc_dir' variable. However, subsequent evaluation indicates the variable is set to a static value in the config.php script and can not be manipulated by an attacker.\n## Solution Description\nThe vulnerability reported is incorrect. No solution required.\n## Short Description\nboastMachine has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the vote.php script not properly sanitizing user input supplied to the 'bmc_dir' variable. However, subsequent evaluation indicates the variable is set to a static value in the config.php script and can not be manipulated by an attacker.\n## Manual Testing Notes\nhttp://[target]/boastMachine/vote.php?bmc_dir=Command-Shell\n## References:\nVendor URL: http://boastology.com/\nOther Advisory URL: http://www.security.nnov.ru/Ndocument122.html\nOther Advisory URL: http://www.root-security.org/danger/boastMachine.txt\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0242.html\nMail List Post: http://attrition.org/pipermail/vim/2006-June/000855.html\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-06/0388.html\nBugtraq ID: 18415\n", "modified": "2006-06-13T16:31:54", "viewCount": 0, "published": "2006-06-13T16:31:54", "cvelist": [], "hashmap": [{"key": "affectedSoftware", "hash": "808423e458b0bbe8d9599c023f4c9880"}, {"key": "bulletinFamily", "hash": "f9fa10ba956cacf91d7878861139efb9"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "8cd4821cb504d25572038ed182587d85"}, {"key": "description", "hash": "5bcce3e8bfcb0fc89c4c4f2cafb84e50"}, {"key": "href", "hash": "0dd63712091d7ce2b4e1bf8a46972dbf"}, {"key": "modified", "hash": "a7990a1b5761f035afec3ebe30554a63"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "a7990a1b5761f035afec3ebe30554a63"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "e2bc7f53ab2fe833314c36427d45f1e6"}, {"key": "title", "hash": "fbc84364f8dd18970f126d6236ba90cd"}, {"key": "type", "hash": "1327ac71f7914948578f08c54f772b10"}]}
