EXtropia Web Store Remote File Retrieval Network Vulnerability

Summary

eXtropia's Web Store shopping cart program allows the remote file retrieval of any file that ends in a .html extension. Further, by supplying a URL with an imbedded null byte, the script can be made to retrieve any file at all. Example: GET /cgi-bin/Web_Store/web_store.cgi?page=../../../../etc/passwd%00.html will return /etc/passwd.

Solution

None available at this time

Severity

Classification

CVE CVE-2000-1005

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Samba Root File System Access Security Vulnerability
AT TFTP Server Directory Traversal Vulnerability
Check for Apache Multiple / vulnerability
Avotus mm File Retrieval attempt
Music Daemon Denial of Service

eXtropia Web Store remote file retrieval

Take action and discover your vulnerabilities