PHP iCalendar上传文件绕过安全执行任意命令漏洞

冷冷DI草 · 发表于 2009-11-23 00:11:20

PHP iCalendar File Upload Security Bypass and Code Execution Vulnerabilities
Technical Description
Two vulnerabilities have been identified in PHP iCalendar, which may be exploited by remote attackers to execute arbitrary commands.
The first flaw is due to input validation errors when processing the "cookie_language" and "cookie_style" parameters, which could be exploited by attackers to include local files.
The second issue is due to an input validation error in the "publish.ical.php" script that does not properly validate the "X-WR-CALNAME" parameter, which could be exploited by attackers to upload arbitrary files and execute arbitrary commands in combination with the first issue.
Affected Products
PHP iCalendar version 2.21 and prior
Solution
The FrSIRT is not aware of any official supplied patch for this issue.
References
http://www.frsirt.com/english/advisories/2006/1019
Credits
Vulnerabilities reported by rgod

汽车小改装 · 发表于 2009-11-26 16:05:01

前一段又听说情缘软件公司的采集器出来了，估计在这儿做测试呢。

老肥 · 发表于 2009-12-5 13:05:08

美丽让男人停下，智慧让男人留下。

孔隆 · 发表于 2009-12-6 22:05:03

我来自火星刚到地球什么都不懂

		自动登录	找回密码
密码			注册