BBS E-Market Professional Arbitrary File Inclusion 2.0
 
Plugin ID232
Plugin nameBBS E-Market Professional Arbitrary File Inclusion
Plugin filenameBBS E-Market Professional Arbitrary File Inclusion.plugin
Plugin filesize3031 bytes
Plugin familyCGI
Plugin created nameNico 'Triplex' Spicher
Plugin created emailTriplex@IT-Helpnet.de
Plugin created webhttp://triplex.it-helpnet.de/
Plugin created companyhttp://www.it-helpnet.de/
Plugin created date2004/09/13
Plugin updated nameMarc Ruef
Plugin updated emailmarc dot ruef at computec dot ch
Plugin updated webhttp://www.computec.ch
Plugin updated companycomputec.ch
Plugin updated date2004/11/14
Plugin version2.0
Plugin changelogMade some slight modifications and enhancements in version 1.1. Corrected the plugin structure and added the accuracy values in 1.2. Improved the pattern matching and introduced the plugin changelog in 2.0
Plugin protocoltcp
Plugin port80
Plugin procedure detectionopen|send GET /becommunity/community/index.php?pageurl=http://www.php.net/downloads.php HTTP/1.0\n\n|sleep|close|pattern_exists HTTP/#.# ### *PHP Function List*
Plugin detection accuracy90
Plugin commentThis plugin was written with the ATK-Plugin-Creator [http://triplex.it-helpnet.de].
Bug published namey3dips
Bug published emaily3dips@echo.or.id
Bug published webhttp://y3dips.echo.or.id
Bug published date2004/09/07
Bug advisoryhttp://echo.or.id/adv/adv06-y3dips-2004.txt
Bug affectedBBS E-Market Professional
Bug not affectedOther solutions
Bug vulnerability classCross Site Scripting
Bug descriptionInput passed to the "pageurl" parameter in "index.php" isn't properly verified, before it is used to include files. This can be exploited to include arbitrary files from external and local resources.
Bug solutionEdit the source to ensure that only trusted files from the local system are included.
Bug exploit availabilityYes
Bug exploit urlhttp://secunia.com/advisories/12509
Bug remoteYes
Bug localYes
Bug severityHigh
Bug popularity2
Bug simplicity7
Bug impact9
Bug risk3
Source Secunia ID12509
Source LiteratureHacking Intern - Angriffe, Strategien, Abwehr, Marc Ruef, Marko Rogge, Uwe Velten and Wolfram Gieseke, November 1, 2002, Data Becker, Düsseldorf, ISBN 381582284X
Source Misc.http://www.computec.ch

This file was generated by the Attack Tool Kit (ATK), the open-sourced security scanner and exploiting framework.