Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » UBBThreads/WWWThreads Arbitrary File Upload Vulnerability

UBBThreads/WWWThreads Arbitrary File Upload Vulnerability

by Nikola Strahija on February 2nd, 2002 UBBThreads/WWWThreads will run on most Unix and Linux variants, in addition to Microsoft Windows NT/2000 operating systems. a vulnerability has been discovered which may allow a remote attacker to upload arbitrary files. If the attacker adds a second file extension, only the first file extension will be checked by the message board.


UBBThreads is a customizable, commercial database-driven message board. Seperate versions are available in both PHP and Perl. UBBThreads/WWWThreads will run on most Unix and Linux variants, in addition to Microsoft Windows NT/2000 operating systems.

UBBThreads/WWWThreads allows users to upload certain types of files to the message board. For example, users may upload .txt, .jpg, .bmp, or .zip files.

A vulnerability has been discovered which may allow a remote attacker to upload arbitrary files. If the attacker adds a second file extension, only the first file extension will be checked by the message board. For example, a file entitled "file.txt.php" will pass through the filter, as the message board will assume it is of a permitted file type based on the first file extension.

In the case of a malicious PHP script, it may be possible for the attacker to execute it via the message board interface.

This issue reportedly affects the PHP version of the software.

There is no exploit required.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »