Iniquity BBS Line Chat Arbitrary File Access

1990-01-01T00:00:00
ID OSVDB:5684
Type osvdb
Reporter OSVDB
Modified 1990-01-01T00:00:00

Description

Vulnerability Description

Iniquity BBS contains a flaw that may allow an unprivileged user to download arbitrary files. The issue is due to the Sysop line chat allowing system commands to be executed from either side of the chat. If a user initiates a file transfer from the chat, they may download any file on the host system.

Technical Description

Since the command to download an arbitrary file will be seen by both sides as it is typed, this vulnerability relies on the Sysop not watching the chat screen.

Solution Description

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: do not leave a user chat session unattended.

Short Description

Iniquity BBS contains a flaw that may allow an unprivileged user to download arbitrary files. The issue is due to the Sysop line chat allowing system commands to be executed from either side of the chat. If a user initiates a file transfer from the chat, they may download any file on the host system.

References: