Re: @cid stats v2.3 File Include

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Re: @cid stats v2.3 File Include
From: Heiko Wundram <admin@xxxxxxxxxx>
Date: Mon, 6 Nov 2006 18:30:07 +0100
In-reply-to: <BAY105-F194AC8495D4573DAFDD2A5C2FC0@xxxxxxx>
List-help: <mailto:bugtraq-help@securityfocus.com>
List-id: <bugtraq.list-id.securityfocus.com>
List-post: <mailto:bugtraq@securityfocus.com>
List-subscribe: <mailto:bugtraq-subscribe@securityfocus.com>
List-unsubscribe: <mailto:bugtraq-unsubscribe@securityfocus.com>
Mailing-list: contact bugtraq-help@xxxxxxxxxxxxxxxxx; run by ezmlm
Organization: x|encon, Gehrkens.IT GmbH
References: <BAY105-F194AC8495D4573DAFDD2A5C2FC0@xxxxxxx>
User-agent: KMail/1.9.5

Am Sonntag, 5. November 2006 23:33 schrieb mahmood ali:
> <snip bullcrap>

Completely bogus.

If you look closely, the corresponding code in install.php3 is used to create 
a config file which contains a statement setting $repertoire (from a user 
input, so here is your injection attack for an install script, which is 
pretty much what you want, I'd guess). Anyway, if you don't delete 
install.php3 after the installation is complete, it's your own fault.

-- 
--- Heiko Wundram.

x|encon Support der
Gehrkens.IT GmbH

FON 0511-59027955 | http://www.gehrkens.it
FAX 0511-59027956 | http://www.xencon.net

Gehrkens.IT GmbH
Mailänder Strasse 2
30539 Hannover

Attachment: pgpVCjzvd7W1Y.pgp
Description: PGP signature

References:
- @cid stats v2.3 File Include
  - From: mahmood ali

Prev by Date: [ECHO_ADV_58_2006]Cyberfolio <=2.0 RC1 $av Remote File Inclusion Vulnerability
Next by Date: [ECHO_ADV_59_2006]Agora 1.4 RC1 "$_SESSION[PATH_COMPOSANT]" Remote File Inclusion Vulnerability
Previous by thread: @cid stats v2.3 File Include
Next by thread: Article Script v1.*and v1.6.3 Sql injection
Index(es):
- Date
- Thread