Login | Register For Free | Help
Search for: (Advanced)

Mailing List Archive: Bugtraq: Bugtraq

Uber Uploader 4.2 Arbitrary File Upload Vulnerability

  

 
Bugtraq bugtraq RSS feed   Index | Next | Previous | View Threaded


null_hack at yahoo

Jan 4, 2007, 11:14 PM

Post #1 of 4 (102 views)
Permalink
Uber Uploader 4.2 Arbitrary File Upload Vulnerability
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
|
|Uber Uploader 4.2 Arbitrary File Upload Vulnerability
|Gamma Security Team
|www.nullak.com
|www.gammahack.com
|Discovered:Null
|Official Site:http://sourceforge.net/projects/uber-uploader
|Download Link:http://belnet.dl.sourceforge.net/sourceforge/uber-uploader/Uber-Uploader_4.2.zip
|Risk:High
|Type:Arbitrary File Upload Vulnerability
|Vuln:
|1-First Rename Your shell.php to shell.phtml then upload it and use it
|(This Script Do Not Allow To Upload php But U Can Upload phtml File)
|
|
|Contact:null_hack[at]yahoo.com
|
|Gr33tz to : All Iranian Hackerz


recklessb at users

Jan 8, 2007, 4:38 PM

Post #2 of 4 (84 views)
Permalink
Re: Uber Uploader 4.2 Arbitrary File Upload Vulnerability [In reply to]
Failed to duplicate this bug using Uber-Uploader 4.2. Tested with ...

Apache 1.3.37 / Perl 5.008008 / PHP 4.4.4

MSIE 6.0
Firefox 2.0.0.1
Opera 9.01


null_hack at yahoo

Jan 10, 2007, 3:04 AM

Post #3 of 4 (85 views)
Permalink
Re: Re: Uber Uploader 4.2 Arbitrary File Upload Vulnerability [In reply to]
the admin has patched the bug
in this script admin can select the upload file extension and he in default model phtml extension in allowed but admin can change it


recklessb at users

Jan 14, 2007, 10:42 AM

Post #4 of 4 (75 views)
Permalink
Re: Re: Re: Uber Uploader 4.2 Arbitrary File Upload Vulnerability [In reply to]
Negative. No bug. No Arbitrary File Upload Vulnerability bug in Uber-Uploader 4.2. No need for admin patch as Uber-Uploader 4.2 blocks .phtml uploads out of the box. *.phtml file blocked client side and server side by default. Please review 4.2 code base.

Bugtraq bugtraq RSS feed   Index | Next | Previous | View Threaded
 
 


Interested in having your list archived? Contact lists@gossamer-threads.com
 
  Web Applications & Managed Hosting Powered by Gossamer Threads Inc.