CVE-2001-0821
CVSS5.0
发布时间 :2001-12-06 00:00:00
修订时间 :2008-09-05 16:25:00
NMCOES    

[原文]The default configuration of DCShop 1.002 beta places sensitive files in the cgi-bin directory, which could allow remote attackers to read sensitive data via an HTTP GET request for (1) orders.txt or (2) auth_user_file.txt.


[CNNVD]DCForum DCShop文件泄露漏洞(CNNVD-200112-061)

        CVE(CAN) ID: CAN-2001-0821
        
        
        
        在某种配置下,DCShop允许未授权用户通过web浏览器直接获得包含客户敏感信息的文
        
        件内容或者是管理员帐号和密码。
        
        
        
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: NONE [不会对系统完整性产生影响]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2001-0821
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2001-0821
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200112-061
(官方数据源) CNNVD

- 其它链接及资源

http://www.securityfocus.com/bid/2889
(VENDOR_ADVISORY)  BID  2889
http://www.dcscripts.com/dcforum/dcshop/44.html
(VENDOR_ADVISORY)  CONFIRM  http://www.dcscripts.com/dcforum/dcshop/44.html
http://xforce.iss.net/static/6707.php
(VENDOR_ADVISORY)  XF  dcshop-cgi-retrieve-information(6707)
http://archives.neohapsis.com/archives/bugtraq/2001-06/0233.html
(VENDOR_ADVISORY)  BUGTRAQ  20010618 DCShop vulnerability

- 漏洞信息

DCForum DCShop文件泄露漏洞
中危 其他
2001-12-06 00:00:00 2005-10-20 00:00:00
远程  
        CVE(CAN) ID: CAN-2001-0821
        
        
        
        在某种配置下,DCShop允许未授权用户通过web浏览器直接获得包含客户敏感信息的文
        
        件内容或者是管理员帐号和密码。
        
        
        
        

- 公告与补丁

        
        
        厂商补丁:
        
        
        
        厂商已经发布了一个安全公告和相应解决办法:
        
        
        http://www.dcscripts.com/dcforum/dcshop/44.html

        
        
        

- 漏洞信息 (20938)

DC Scripts DCShop Beta 1.0 02 File Disclosure Vulnerability (1) (EDBID:20938)
cgi remote
2001-06-18 Verified
0 Peter Helms
N/A [点击下载]
source: http://www.securityfocus.com/bid/2889/exploit

DCShop is a GCI-based ecommerce system from DCScripts.

Under certain configurations, a beta version of this product can allow a remote user to request and obtain files containing confidential order data, including credit card and other private customer information, as well as the DCShop admnistrator login ID and password. 

http://theTargetHost/cgi-bin/DCShop/Orders/orders.txt		

- 漏洞信息 (20939)

DC Scripts DCShop Beta 1.0 02 File Disclosure Vulnerability (2) (EDBID:20939)
cgi remote
2001-06-18 Verified
0 Peter Helms
N/A [点击下载]
source: http://www.securityfocus.com/bid/2889/exploit
 
DCShop is a GCI-based ecommerce system from DCScripts.
 
Under certain configurations, a beta version of this product can allow a remote user to request and obtain files containing confidential order data, including credit card and other private customer information, as well as the DCShop admnistrator login ID and password. 

http://theTargetHost/cgi-bin/DCShop/Auth_data/auth_user_file.txt 		

- 漏洞信息

17111
DCShop auth_user_file.txt GET Request Information Disclosure
Remote / Network Access Information Disclosure
Loss of Confidentiality Solution Unknown

- 漏洞描述

- 时间线

2001-06-18 Unknow
2001-06-18 Unknow

- 解决方案

OSVDB is not aware of a solution for this vulnerability.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

DCForum DCShop File Disclosure Vulnerability
Origin Validation Error 2889
Yes No
2001-06-18 12:00:00 2009-07-11 06:56:00
Reported by Peter Helms <peter.helms@ey.dk> on June 18, 2001.

- 受影响的程序版本

DC Scripts DCShop Beta 1.0 02

- 漏洞讨论

DCShop is a GCI-based ecommerce system from DCScripts.

Under certain configurations, a beta version of this product can allow a remote user to request and obtain files containing confidential order data, including credit card and other private customer information, as well as the DCShop admnistrator login ID and password.

- 漏洞利用

http://theTargetHost/cgi-bin/DCShop/Orders/orders.txt

http://theTargetHost/cgi-bin/DCShop/Auth_data/auth_user_file.txt

- 解决方案

"**Please keep in mind that DCShop is still in beta. We do not recommend this version for commercial deployment.
This version is available for download for interested developers and webmasters to test and demo."

The vendor has issued an advisory which makes a number of recommendations addressing this issue.

http://www.dcscripts.com/dcforum/dcshop/44.html

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站