Support
Eng
òÕÓ
Company
Home
Services
Solutions
Documentation
News and Events
 
 
 
Knowledgebase
Downloads
Glossary
Ask a Question
Search:     Advanced search
SHALB.com / Security Knowledgebase / Network Security / Gain a shell remotely / Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
server monitoring

Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
Article ID: 19698
Last updated: 27 Jan, 2009
Print
Email to friend
Views: 396
Posted: 22 Jan, 2009
by: Tech Pubs S.
Updated: 27 Jan, 2009
by: Tech Pubs S.

Mail-it Now! Upload2Server Arbitrary File Upload Vulnerability
This script is Copyright (C) 2005-2007 Tenable Network Security

FamilyGain a shell remotely
Plugin ID19698
Bugtraq ID14821
CVE ID

Description:

Synopsis :

The remote web server contains a PHP application is prone to an
arbitrary file upload vulnerability.

Description :

The remote host is running Mail-it Now! Upload2Server, a free, PHP
feedback form script supporting file uploads.

The version of Upload2Server installed on the remote host stores
uploaded files insecurely. An attacker may be able to exploit this
flaw to upload a file with arbitrary code and then execute it on the
remote host subject to the privileges of the web server user id.

See also :

http://retrogod.altervista.org/mailitnow.html

Solution :

Remove the script or edit the script to change the upload directory.

Risk factor :

High / CVSS Base Score : 7.5
(CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P)
This article was:   Helpful | Not Helpful
Prev   Next
UW IMAP Mailbox Name Buffer Overflow     MailEnable SE SMTP Command Format String Vulnerability

server monitoring

¿ 2010 "SHALB.com" All rights reserved
SHALB Home
Services
Solutions
Documentation
News and Events