Nessus Plugin #10533

Plugin Index

Note: This file has been created from a downloaded version of the Nessus Plugins from http://www.nessus.org/. Therefore, the information here can be outdated.

Web Shopper remote file retrieval

Family:
Remote file access
Category:
infos
Copyright:
This script is Copyright (C) 2000 Thomas Reinke
Summary:
Web Shopper remote file retrieval
Version:
$Revision: 1.17 $
Cve_id:
CVE-2000-0922
Bugtraq_id:
1776
Xrefs:
-
Description:
Byte's Interactive Web Shopper
(shopper.cgi) allows for retrieval of arbitrary files
from the web server. Both Versions 1.0 and 2.0 are
affected.

Example:
GET /cgi-bin/shopper.cgi?newpage=../../../../etc/passwd

will return /etc/passwd.

Solution: Uncomment the #$debug=1 variable in the script
so that it will check for, and disallow, viewing of
arbitrary files.

Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.