Hermes Unspecified File Inclusion

2003-12-12T05:16:58
ID OSVDB:3024
Type osvdb
Reporter OSVDB
Modified 2003-12-12T05:16:58

Description

Vulnerability Description

Hermes contains a flaw that may allow a malicious user to compromise a vulnerable system. The issue is triggered when arbitrary scripts are included in Hermes operation. It is possible that the flaw may allow execution of arbitrary script code resulting in a loss of integrity.

Technical Description

Hermes CRM 0.3.0-Alpha-4 and lower are vulnerable if both the 'allow_url_fopen' and 'register_globals' PHP directives are enabled.

Solution Description

Upgrade to version 0.3.0 beta 1 or higher, as it has been reported to fix this vulnerability. It is also possible to correct the flaw by implementing the following workaround(s): Disable the 'allow_url_fopen' and 'register_globals' PHP directives, doing this may break functionality.

Short Description

Hermes contains a flaw that may allow a malicious user to compromise a vulnerable system. The issue is triggered when arbitrary scripts are included in Hermes operation. It is possible that the flaw may allow execution of arbitrary script code resulting in a loss of integrity.

References:

Vendor URL: http://hermesweb.sourceforge.net/ Vendor Specific Solution URL: http://sourceforge.net/project/showfiles.php?group_id=22834 Secunia Advisory ID:10414 Bugtraq ID: 9173