Bugtraq: Re: IRM 015: File system path disclosure on TYPO3 Web Content Manager

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Bugtraq mailing list archives

Re: IRM 015: File system path disclosure on TYPO3 Web Content Manager

From: Michael Shigorin <mike () osdn org ua>
Date: Thu, 19 Jan 2006 21:13:27 +0200

On Thu, Jan 19, 2006 at 10:30:36AM -0000, Advisories wrote:

File system path disclosure on TYPO3 Web Content Manager
Vulnerablity Type / Importance: Information Leakage / Medium


Hm, since when path disclosure is "medium importance"?

The following files were found to disclose the application path:
http://hostname/typo3/t3lib/thumbs.php
http://hostname/tslib/showpic.php
http://hostname/t3lib/stddb/tables.php
Tested Versions:
Version 3.7.1


The first one verified as applicable to 3.8.1 too (easily
avoidable by adding IP- or user-based access restriction
to /typo3 since that's administrative backend anyways),
and the rest doesn't disclose anything on properly configured
at least display_errors-wise webserver, which is a documented
recommended (and often reiterated everywhere) PHP setup.

Workarounds:
IRM are not aware of any workarounds for this issue.


Ouch. :)

-- 
 ---- WBR, Michael Shigorin <mike () altlinux ru>
  ------ Linux.Kiev http://www.linux.kiev.ua/

Attachment: _bin
Description:

By Date By Thread

Current thread:

IRM 015: File system path disclosure on TYPO3 Web Content Manager Advisories (Jan 19)
- Re: IRM 015: File system path disclosure on TYPO3 Web Content Manager Michael Shigorin (Jan 19)