Re: Gstebuch Version 1.5 Remote Command Execution Vulnerability

From: Carsten Eilers <ceilers-lists@gmx.de>
To: bugtraq@securityfocus.com
Cc:
Subject: Re: Gstebuch Version 1.5 Remote Command Execution Vulnerability
Date:


ilkerkandemir@mynet.com schrieb am Fri, 10 Aug 2007 09:57:48 +0000:

>echo "<meta http-equiv='refresh' content='0;URL=install.php'>";
>
>redirecting brotha ;)
>
>Not RFI

Nice try, but you should read the lines above the redirection, too:

| <?php
| session_start();
| include($config["root_ordner"].'config.php');
| if (file_exists($root_ordner.'install.php')) 
| {
|        echo "<meta http-equiv='refresh' content='0;URL=install.php'>";
|   exit;
| }

Your redirection is in line 6, the RFI in line 3.
First hit wins: RFI. ;-)

Regards,
  Carsten







Copyright © 1995-2018 LinuxRocket.net. All rights reserved.