First published: Thu Feb 21 2008(Updated: )
Description of problem: The Diatheke CGI allows arbitrary command execution in the context of the webserver, e.g. www-data by simply abusing the range parameter. For example, &range=`yes` will consume tons of resources on the affected webserver. Escalation of privleges and command shells are left as an exercise to the reader. From Debian: <a href="http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=466449">http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=466449</a>
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1 | |
Debian Debian Linux | =3.1-r1 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Debian Debian Linux | =4.0 | |
Redhat Fedora | =7 | |
Redhat Fedora | =8 | |
The Sword Project Diatheke Front End | <=1.5.9 | |
The Sword Project Sword | <=1.5.9 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.