[VIM] Pixlie 1.7 (pixlie.php root) Remote File Inclusion Vulnerability
George A. Theall
theall at tenablesecurity.com
Tue Aug 14 02:33:51 UTC 2007
Has anyone had a chance to look at Milw0rm 4278 yet? It's light on
details, but it would seem to involve the 'root' parameter in the
'pixlie.php' script. From the 1.7 distribution, the relevant code seems
to be:
//$root = "/home/www/IhrBenutzer/html";
..
if(!isset($root)){$root = $_SERVER['DOCUMENT_ROOT'];}
Following that, there are some defines that make use of $root, but I
don't see any instances of include(), require(), include_once(),
require_once() or even eval() anywhere in the supposedly-affected file.
So what am I missing?
George
--
theall at tenablesecurity.com
More information about the VIM
mailing list