CVE-2005-0229
CVSS5.0
发布时间 :2005-04-27 00:00:00
修订时间 :2016-10-17 23:08:51
NMCOS    

[原文]CitrusDB 0.3.5 and earlier stores the newfile.txt temporary data file under the web root, which allows remote attackers to steal credit card information via a direct request to newfile.txt.


[CNNVD]CitrusDB信用卡数据远程信息泄露漏洞(CNNVD-200504-110)

        CitrusDB是一个PHP开源客户关系维护和账单管理解决方案,CitrusDB主要功能有跟踪客户服务信息、安全级别设置、服务管理、产品以及账单发票、信用卡资料管理、模块定制、多语言发票印制、预付提醒等。
        CitrusDB 0.3.5及更早版本在web根目录下存储newfile.txt临时文件,远程攻击者可以通过直接请求newfile.txt来偷窃信用卡信息。

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: [--]
完整性影响: [--]
可用性影响: [--]
攻击复杂度: [--]
攻击向量: [--]
身份认证: [--]

- CPE (受影响的平台与产品)

cpe:/a:citrusdb:citrusdb_customer_database:0.3.1
cpe:/a:citrusdb:citrusdb_customer_database:0.3.5
cpe:/a:citrusdb:citrusdb_customer_database:0.2
cpe:/a:citrusdb:citrusdb_customer_database:0.3
cpe:/a:citrusdb:citrusdb_customer_database:0.1.2
cpe:/a:citrusdb:citrusdb_customer_database:0.2.1

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0229
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0229
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200504-110
(官方数据源) CNNVD

- 其它链接及资源

http://marc.info/?l=full-disclosure&m=110824766519417&w=2
(UNKNOWN)  FULLDISC  20050212 Credit Card data disclosure in CitrusDB
http://securitytracker.com/id?1013040
(UNKNOWN)  SECTRACK  1013040
http://www.citrusdb.org/forums/viewtopic.php?t=49
(UNKNOWN)  CONFIRM  http://www.citrusdb.org/forums/viewtopic.php?t=49
http://www.redteam-pentesting.de/advisories/rt-sa-2005-001.txt
(VENDOR_ADVISORY)  MISC  http://www.redteam-pentesting.de/advisories/rt-sa-2005-001.txt
http://www.securityfocus.com/bid/12402
(VENDOR_ADVISORY)  BID  12402
http://xforce.iss.net/xforce/xfdb/19145
(UNKNOWN)  XF  citrus-information-disclosure(19145)

- 漏洞信息

CitrusDB信用卡数据远程信息泄露漏洞
中危 访问验证错误
2005-04-27 00:00:00 2006-05-12 00:00:00
远程  
        CitrusDB是一个PHP开源客户关系维护和账单管理解决方案,CitrusDB主要功能有跟踪客户服务信息、安全级别设置、服务管理、产品以及账单发票、信用卡资料管理、模块定制、多语言发票印制、预付提醒等。
        CitrusDB 0.3.5及更早版本在web根目录下存储newfile.txt临时文件,远程攻击者可以通过直接请求newfile.txt来偷窃信用卡信息。

- 公告与补丁

        暂无数据

- 漏洞信息

13228
CitrusDB Credit Card Import/Export Data Disclosure
Remote / Network Access Information Disclosure
Loss of Confidentiality
Exploit Unknown Vendor Verified

- 漏洞描述

CitrusDB contains a flaw related to the credit card data import/export functions that may allow an attacker to gain access to that data. No further details have been provided.

- 时间线

2005-01-28 Unknow
Unknow Unknow

- 解决方案

Upgrade to version 0.3.6 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

- 相关参考

- 漏洞作者

- 漏洞信息

CitrusDB Credit Card Data Remote Information Disclosure Vulnerability
Access Validation Error 12402
Yes No
2005-01-31 12:00:00 2009-07-12 10:06:00
Reported by Maximillian Dornseif <dornseif@informatik.rwth-aachen.de> .

- 受影响的程序版本

CitrusDB Customer Database 0.3.5
CitrusDB Customer Database 0.3.1
CitrusDB Customer Database 0.3
CitrusDB Customer Database 0.2.1
CitrusDB Customer Database 0.2
CitrusDB Customer Database 0.1.2
CitrusDB Customer Database 0.3.6

- 不受影响的程序版本

CitrusDB Customer Database 0.3.6

- 漏洞讨论

A remote information disclosure issue affects CitrusDB. This issue is due to a design problem that grants unauthorized users the ability to export sensitive data.

An attacker may leverage this issue to gain access to sensitive information including credit card data.

- 漏洞利用

No exploit is required to leverage this issue. To exploit a default configuration, the attacker needs only access:

[path to CitrusDB]/io/newfile.txt

where [path to CitrusDB] is the path relative to the web root.

- 解决方案

The vendor has provided an upgrade dealing with this issue.


CitrusDB Customer Database 0.1.2

CitrusDB Customer Database 0.2

CitrusDB Customer Database 0.2.1

CitrusDB Customer Database 0.3

CitrusDB Customer Database 0.3.1

CitrusDB Customer Database 0.3.5

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站