CVE-2004-0374
CVSS6.4
发布时间 :2004-05-04 00:00:00
修订时间 :2008-09-05 16:38:16
NMCOES    

[原文]Interchange before 5.0.1 allows remote attackers to "expose the content of arbitrary variables" and read or modify sensitive SQL information via an HTTP request ending with the "__SQLUSER__" string.


[CNNVD]Interchange远程信息泄露漏洞(CNNVD-200405-013)

        
        Interchange是一个电子商务和应用服务器系统,它使用户可以非常方便的构建一个基于数据库的Web服务器以及在线应用。
        Interchange不正确处理部分URI请求,远程攻击者可以利用这个漏洞获得任意变量信息,造成敏感信息泄露。
        直接提交cgi-bin目录中的"__SQLUSER__"请求,可获得大量变量信息,利用这些信息,攻击者可进一步对系统进行攻击。
        

- CVSS (基础分值)

CVSS分值: 6.4 [中等(MEDIUM)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:interchange_development_group:interchange:4.8.7
cpe:/a:interchange_development_group:interchange:4.8.5
cpe:/a:interchange_development_group:interchange:4.8.6
cpe:/a:interchange_development_group:interchange:4.8.1
cpe:/a:interchange_development_group:interchange:4.8.2
cpe:/a:interchange_development_group:interchange:4.8.4
cpe:/a:interchange_development_group:interchange:4.8.9
cpe:/a:interchange_development_group:interchange:4.8.3
cpe:/a:interchange_development_group:interchange:5.0
cpe:/a:interchange_development_group:interchange:4.8.8

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0374
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2004-0374
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200405-013
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/15670
(VENDOR_ADVISORY)  XF  interchange-url-obtain-information(15670)
http://www.debian.org/security/2004/dsa-471
(VENDOR_ADVISORY)  DEBIAN  DSA-471
http://www.securityfocus.com/bid/10005
(UNKNOWN)  BID  10005
http://secunia.com/advisories/11234
(UNKNOWN)  SECUNIA  11234
http://ftp.icdevgroup.org/interchange/5.0/WHATSNEW
(UNKNOWN)  CONFIRM  http://ftp.icdevgroup.org/interchange/5.0/WHATSNEW
http://www.icdevgroup.org/pipermail/interchange-announce/2004/000043.html
(UNKNOWN)  MLIST  [interchange-announce] 20040329 Security Problem in Interchange

- 漏洞信息

Interchange远程信息泄露漏洞
中危 设计错误
2004-05-04 00:00:00 2005-10-20 00:00:00
远程  
        
        Interchange是一个电子商务和应用服务器系统,它使用户可以非常方便的构建一个基于数据库的Web服务器以及在线应用。
        Interchange不正确处理部分URI请求,远程攻击者可以利用这个漏洞获得任意变量信息,造成敏感信息泄露。
        直接提交cgi-bin目录中的"__SQLUSER__"请求,可获得大量变量信息,利用这些信息,攻击者可进一步对系统进行攻击。
        

- 公告与补丁

        厂商补丁:
        Debian
        ------
        
        http://www.debian.org/security/2004/dsa-471

        Interchange
        -----------
        目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
        Interchange Upgrade Interchange 5.0.1
        
        http://www.icdevgroup.org/i/dev/download.html

- 漏洞信息 (23895)

Interchange 4.8.x/5.0 Remote Information Disclosure Vulnerability (EDBID:23895)
asp webapps
2004-03-30 Verified
0 Anonymous
N/A [点击下载]
source: http://www.securityfocus.com/bid/10005/info

It has been reported that Interchange may be prone to a remote information disclosure vulnerability allowing attackers to disclose contents of arbitrary variables via URI requests.

This issue may allow an attacker to gain access to sensitive information that may be used to launch further attacks against a system. 

http://www.example.com/cgi-bin/store/__SQLUSER__ 		

- 漏洞信息

4670
Interchange Variable Information Disclosure
Remote / Network Access Information Disclosure
Loss of Confidentiality
Exploit Public

- 漏洞描述

Interchange contains a flaw that may lead to an unauthorized information disclosure.  The issue is triggered when a remote attacker requests an invalid file and receives the standard "missing" special page, which will disclose variable information resulting in a loss of confidentiality.

- 时间线

2004-03-29 Unknow
2004-03-29 Unknow

- 解决方案

Upgrade to version 4.8.9, 5.1.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

Interchange Remote Information Disclosure Vulnerability
Design Error 10005
Yes No
2004-03-30 12:00:00 2009-07-12 04:06:00
This issue was disclosed in the product changelog.

- 受影响的程序版本

Interchange Interchange 5.0
Interchange Interchange 4.8.9
Interchange Interchange 4.8.8
Interchange Interchange 4.8.7
Interchange Interchange 4.8.6
Interchange Interchange 4.8.5
Interchange Interchange 4.8.4
Interchange Interchange 4.8.3
+ Debian Linux 3.0 sparc
+ Debian Linux 3.0 s/390
+ Debian Linux 3.0 ppc
+ Debian Linux 3.0 mipsel
+ Debian Linux 3.0 mips
+ Debian Linux 3.0 m68k
+ Debian Linux 3.0 ia-64
+ Debian Linux 3.0 ia-32
+ Debian Linux 3.0 hppa
+ Debian Linux 3.0 arm
+ Debian Linux 3.0 alpha
+ Debian Linux 3.0
Interchange Interchange 4.8.2
Interchange Interchange 4.8.1
Interchange Interchange 5.0.1

- 不受影响的程序版本

Interchange Interchange 5.0.1

- 漏洞讨论

It has been reported that Interchange may be prone to a remote information disclosure vulnerability allowing attackers to disclose contents of arbitrary variables via URI requests.

This issue may allow an attacker to gain access to sensitive information that may be used to launch further attacks against a system.

- 漏洞利用

No exploit is required.

The following proof of concept has been provided:
http://www.example.com/cgi-bin/store/__SQLUSER__

- 解决方案

The vendor has released Interchange 5.0.1 to address this issue.

Debian has released advisory DSA 471-1 and fixes dealing with this issue.


Interchange Interchange 4.8.1

Interchange Interchange 4.8.2

Interchange Interchange 4.8.3

Interchange Interchange 4.8.4

Interchange Interchange 4.8.5

Interchange Interchange 4.8.6

Interchange Interchange 4.8.7

Interchange Interchange 4.8.8

Interchange Interchange 4.8.9

Interchange Interchange 5.0

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站