GLSA-200508-07 : AWStats: Arbitrary code execution using malicious Referrer information

NASLDB: GLSA-200508-07 : AWStats: Arbitrary code execution using malicious Referrer information

General

ID: 19440
Name: GLSA-200508-07 : AWStats: Arbitrary code execution using malicious Referrer information

Summary: Checks for updated package(s) in /var/db/pkg

Credits: –

Classification

Risk: –

CVSS: –
CVSS Base Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS Temporal Vector: –

Port: 0
Family: Gentoo Local Security Checks
Type: Local

Description

The remote host is affected by the vulnerability described in GLSA-200508-07
(AWStats: Arbitrary code execution using malicious Referrer information)

When using a URLPlugin, AWStats fails to sanitize Referrer URL
data before using them in a Perl eval() routine.

Impact :

A remote attacker can include arbitrary Referrer information in a
HTTP request to a web server, therefore injecting tainted data in the
log files. When AWStats is run on this log file, this can result in the
execution of arbitrary Perl code with the rights of the user running
AWStats.

Workaround :

Disable all URLPlugins in the AWStats configuration.

Exploiting

Exploit Available: –
Exploitability Ease: –

Sources

CVE: CVE-2005-1527
OSVDB: –
Bugtraq: –
scipID: –

Timeline

Vulnerability Disclosure: 2005/08/09
Patch Release: 2005/08/16
Plugin Release: 2005/08/18

Plugin

Version: 1.13
Filename: gentoo_GLSA-200508-07.nasl
Filesize: 3788 bytes
MD5 Hash: 86ac03f12d044583f7daa0543923cb55

Identification: Host/local_checks_enabled
Require Keys: Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list
Dependencies: "ssh_get_info.nasl"

Letzte Plugins

Letzte Plugins

scip AG