myBloggie Multiple Script mybloggie_root_path Variable Remote File Inclusion

2006-08-09T03:10:10
ID OSVDB:29166
Type osvdb
Reporter Sh3ll(sh3ll@sh3ll.ir)
Modified 2006-08-09T03:10:10

Description

Vulnerability Description

myBloggie has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the admin.php, index.php and includes/db.php scripts not properly sanitizing user input supplied to the 'mybloggie_root_path' variable. However, subsequent examination by a third party indicates the variables are set to a static value in another script and can not be manipulated by an attacker.

Solution Description

The vulnerability reported is incorrect. No solution required.

Short Description

myBloggie has been reported to contain a flaw that may allow a remote attacker to execute arbitrary commands. The issue is supposedly due to the admin.php, index.php and includes/db.php scripts not properly sanitizing user input supplied to the 'mybloggie_root_path' variable. However, subsequent examination by a third party indicates the variables are set to a static value in another script and can not be manipulated by an attacker.

Manual Testing Notes

http://[target]/[myBloggie]/admin.php?mybloggie_root_path=[Evil Script] http://[target]/[myBloggie]/index.php?mybloggie_root_path=[Evil Script] http://[target]/[myBloggie]/includes/db.php?mybloggie_root_path=[Evil Script]

References:

Vendor URL: http://mybloggie.mywebland.com/ Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0248.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0300.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-08/0202.html