31 lines
No EOL
1.1 KiB
Text
31 lines
No EOL
1.1 KiB
Text
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
|
|
[ONSEC-09-005] Amiro.CMS root folder disclosure
|
|
Objective: Amiro CMS <= 5.4.0.0
|
|
Type: Disclosure of ways
|
|
Threat: Medium
|
|
Date Discovered: 01.07.2009
|
|
Date of notification Developer: 01.07.2009
|
|
Released fixes: 06.10.2009
|
|
Author: Vladimir Vorontsov
|
|
OnSec Russian Security Group (onsec [dot] ru)
|
|
Description: A vulnerability exists due to improper handling-line user name
|
|
to log into the administrative console. When you enter your user name%%%
|
|
attacker can gain information on the full path when you install
|
|
applications, as well as some of the names of internal variables. In
|
|
consequence of the fact that the function quits, the administrator does not
|
|
know of the compromise of the system through the module, "History of
|
|
logins.
|
|
|
|
Implementation:
|
|
|
|
In the administrative console login prompt, enter the user name:
|
|
|
|
%%%
|
|
|
|
and will realize the login attempt
|
|
|
|
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|
References: (on Russian)
|
|
http://onsec.ru/vuln?id=11
|
|
http://onsec.ru/vuln?id=12 |