| VID |
21329 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The RiSearch software is vulnerable to an Arbitrary File Access Vulnerability.
The RiSearch (and Pro) Suite is a set of PERL scripts that enables users to search Web sites for Microsoft Windows, Unix and Linux platforms. RiSearch version 1.0.1 and earlier and RiSearch Pro version 3.2.6 could allow a remote attacker to read arbitrary files on the local file system of the affected Web server using the following URL:
http://[target.com]/cgi-bin/search/show.pl?url=file:/etc/passwd
This flaw is due to a lack of sufficient sanitization performed on user supplied URI parameters to the show.pl script.
* References:
http://www.securityfocus.com/archive/1/370103
http://www.irmplc.com/advisories.htm
http://packetstormsecurity.nl/0407-exploits/IRM-009.txt
http://www.osvdb.org/displayvuln.php?osvdb_id=8266
* Platforms Affected:
S.Tarasov, RiSearch 1.0.1 and earlier
S.Tarasov, RiSearch Pro 3.2.6
Microsoft Windows Any version
Unix Any version
Linux Any version |
| Recommendation |
Upgrade to the latest version of RiSearch package (updated on July 8th 2004 or later), available from RiSearch download site at http://rth.dk/resources/risearch/ |
| Related URL |
CVE-2004-2061 (CVE) |
| Related URL |
10812 (SecurityFocus) |
| Related URL |
16817 (ISS) |
|
