Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

[SA10955] phpNewsManager "functions.php" Directory Traversal Vulnerability
phpNewsManager "functions.php" Directory Traversal Vulnerability

From Secunia, for About.com

TITLE:
phpNewsManager "functions.php" Directory Traversal Vulnerability

SECUNIA ADVISORY ID:
SA10955

VERIFY ADVISORY:
http://secunia.com/advisories/10955/

CRITICAL:
Moderately critical

IMPACT:
Exposure of system information, Exposure of sensitive information

WHERE:
From remote

SOFTWARE:
phpNewsManager 1.x

DESCRIPTION:
G00db0y has reported a vulnerability in phpNewsManager, which can be exploited by malicious people to gain knowledge of sensitive information.

The "functions.php" script does not sanitise user input passed to the "clang" parameter properly, which can be exploited via classic directory traversal attacks to disclose the content of arbitrary files.

Example:
http://[victim]/functions.php?clang=../../../[existing_file]

The vulnerability has been reported in version 1.46. Other versions may also be affected.

SOLUTION:

  • Edit the source code to ensure that input is properly sanitised.

  • Filter malicious characters and character sequences in a proxy or firewall with URL filtering capabilities.

PROVIDED AND/OR DISCOVERED BY:
G00db0y, Zone-h Security Labs.

ORIGINAL ADVISORY:

For further details and links please click here to see the actual Secunia Advisory: http://secunia.com/advisories/10955/

More Internet / Network Security Quick Tips
Explore Internet / Network Security
About.com Special Features
Family Tech Center

Stay connected and entertained with reviews on tips on the latest HDTVs, cellphones and more. More >

Connect Your Home Computers

Easy ways to connect two computers for networking purposes. More >

Internet / Network Security
  1. Home
  2. Computing & Technology
  3. Internet / Network Security

©2009 About.com, a part of The New York Times Company.

All rights reserved.