[VIM] Remote File Include In ClipShare.v1.5.3

George A. Theall theall at tenablesecurity.com
Mon Mar 12 20:11:48 UTC 2007

Has anyone been able to verify this 
(http://archives.neohapsis.com/archives/bugtraq/2007-03/0118.html)? The 
source for this app isn't publically available, but I've looked at 
copies of adodb-connection.inc.php included in other apps and all are 
implemented as a PHP class, with no ability to call it directly and get 
anything like a remote file include.

In addition, while the code does use '$cmd', it's in a call to exec() 
rather than include(), and its value does not seem at first blush to be 
under an attacker's control.

Methinks deaR aydasaH has things a bit backwards.

theall at tenablesecurity.com

More information about the VIM mailing list