CGI::Lite Perl module escape_dangerous_chars() shell command execution
| cgilite-shell-command-execution (11308) |  High Risk |
Description:
CGI::Lite fails to filter out certain special characters from form input. A remote attacker could exploit this vulnerability to read or write to local files, and possibly execute shell commands on the Web server by supplying malicious form input to an affected Web server.
Platforms Affected:
- Infocopter, CGI::Lite 2.0
Remedy:
No remedy available as of November 29, 2008.
Consequences:
Gain Access
References:
- BugTraq Mailing List, Tue Feb 11 2003 - 12:40:59 CST , Security bug in CGI::Lite::escape_dangerous_chars() function at http://archives.neohapsis.com/archives/bugtraq/2003-02/0141.html.
- CPAN Web site, CGI::Lite - Perl module to process and decode WWW forms and cookies at http://search.cpan.org/author/BENL/CGI-Lite-2.0/Lite.pm.
- BID-6833: CGI Lite Perl Module Metacharacter Input Validation Vulnerability
- CVE-2003-1365: The escape_dangerous_chars function in CGI::Lite 2.0 and earlier does not correctly remove special characters including (1) \ (backslash), (2) ?, (3) ~ (tilde), (4) ^ (carat), (5) newline, or (6) carriage return, which could allow remote attackers to read or write arbitrary files, or execute arbitrary commands, in shell scripts that rely on CGI::Lite to filter such dangerous inputs.
Reported:
Feb 11, 2003
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net