Date: Wed, 21 Feb 2001 19:40:35 -0800 (PST) From: skywizard@time.net.my To: freebsd-gnats-submit@FreeBSD.org Subject: ports/25272: Using eperl as cgi/nph binary executor can give anybody the ability to view the content of any file Message-ID: <200102220340.f1M3eZ192752@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
>Number: 25272 >Category: ports >Synopsis: Using eperl as cgi/nph binary executor can give anybody the ability to view the content of any file >Confidential: no >Severity: serious >Priority: medium >Responsible: freebsd-ports >State: open >Quarter: >Keywords: >Date-Required: >Class: sw-bug >Submitter-Id: current-users >Arrival-Date: Wed Feb 21 19:50:01 PST 2001 >Closed-Date: >Last-Modified: >Originator: Ariff Abdullah >Release: FreeBSD 2.2.8 >Organization: none >Environment: FreeBSD FreeBSD.mine.nu 2.2.8-RELEASE FreeBSD 2.2.8-RELEASE #0: Wed Dec 20 09:06:02 MYT 2000 root@FreeBSD.mine.nu:/usr/src/sys/compile/FreeBSD i386 >Description: Anybody can view the content of (any? ) file (especially cgi script) if the server using eperl (current version is 2.2.14) as server side scripting, especially as external "/cgi-bin/nph-eperl" >How-To-Repeat: browse to "http://any_server_using_eperl/cgi-bin/nph-eperl/cgi-bin/any_cgi_script" example: http://www.cdrom.com/cgi-bin/nph-eperl/cgi-bin/OpenCart.cgi (sorry) >Fix: Maybe we can tweak the server config? (I'm still doing some "brute attack" to my very own server) >Release-Note: >Audit-Trail: >Unformatted: To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-ports" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200102220340.f1M3eZ192752>