oss-sec mailing list archives
Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface
From: Florian Streibelt <gentoo () f-streibelt de>
Date: Wed, 23 Jun 2010 19:41:17 +0200
Hi, 'Jan Lieskovsky' schrieb am 23.06.2010 18:35:
Florian, please correct me, if I mangled the attack scenario, and it's slightly different.
when I reported the bug I had no time to further investigate and I think I did not report upstream because of lack of time at that point and later forgot - which is sad. The php webinterface is a third-party development for mlmmj but part of the official release. The last official release is 1.2.16 from 2009-Sep-05. On http://mlmmj.mmj.dk/files/ there is a newer version that is not linked to on the official download page. This new version differs only in another template-class beeing used, so all flaws should still be there. Reported Upstream today: http://mlmmj.org/node/84 Florian
Current thread:
- CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Jan Lieskovsky (Jun 23)
- Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Florian Streibelt (Jun 23)
- Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Morten Shearman Kirkegaard (Jun 26)
- Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Josh Bressers (Jun 25)
- Re: CVE Request -- mlmmj -- Directory traversal flaw by editing and saving list entries via php-admin web interface Florian Streibelt (Jun 23)