DansGuardian Hex Encoded Banned Extension Filter Bypass

2004-07-29T04:43:12
ID OSVDB:8270
Type osvdb
Reporter Rubén Molina(ruben@udea.edu.co)
Modified 2004-07-29T04:43:12

Description

Vulnerability Description

DansGuardian contains a flaw that may allow a malicious user to bypass banned extensions filter. The issue is triggered when the attacker uses hexadecimal encoded characters in the URI file name to be retrieved. It is possible that the flaw may allow banned files to be viewed.

Solution Description

Upgrade to version 2.8.0.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

DansGuardian contains a flaw that may allow a malicious user to bypass banned extensions filter. The issue is triggered when the attacker uses hexadecimal encoded characters in the URI file name to be retrieved. It is possible that the flaw may allow banned files to be viewed.

Manual Testing Notes

http://server/file.%65%78%65 or http://server/file%2eexe

References:

Vendor URL: http://dansguardian.org/ Vendor Specific Solution URL: http://dansguardian.avgguy.us/downloads/2/Stable/dansguardian-2.8.0.1.source.tar.gz Security Tracker: 1010817 Secunia Advisory ID:12191 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2004-07/0326.html ISS X-Force ID: 16836