CVE-2005-0854
CVSS7.5
发布时间 :2005-05-02 00:00:00
修订时间 :2008-09-05 16:47:30
NMCOP    

[原文]betaparticle blog (bp blog), posisbly before version 4, allows remote attackers to bypass authentication and (1) upload files via a direct request to upload.asp or (2) delete files via a direct request to myFiles.asp.


[CNNVD]Betaparticle Blog多个远程漏洞(CNNVD-200505-208)

        可能betaparticle blog (bp blog) 4之前的版本,允许远程攻击者绕过绕过认证并(1)通过对upload.asp的直接请求上传文件,或者(2)通过对myFiles.asp的直接请求删除文件。

- CVSS (基础分值)

CVSS分值: 7.5 [严重(HIGH)]
机密性影响: PARTIAL [很可能造成信息泄露]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: PARTIAL [可能会导致性能下降或中断资源访问]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

cpe:/a:betaparticle:betaparticle_blog:2.0
cpe:/a:betaparticle:betaparticle_blog:3.0

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0854
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-0854
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200505-208
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/19781
(PATCH)  XF  betaparticle-blog-authentication-bypass(19781)
http://secunia.com/advisories/14668
(VENDOR_ADVISORY)  SECUNIA  14668
http://www.securityfocus.com/bid/12861
(UNKNOWN)  BID  12861
http://blog.betaparticle.com/template_permalink.asp?id=68
(UNKNOWN)  CONFIRM  http://blog.betaparticle.com/template_permalink.asp?id=68

- 漏洞信息

Betaparticle Blog多个远程漏洞
高危 资料不足
2005-05-02 00:00:00 2006-06-15 00:00:00
远程  
        可能betaparticle blog (bp blog) 4之前的版本,允许远程攻击者绕过绕过认证并(1)通过对upload.asp的直接请求上传文件,或者(2)通过对myFiles.asp的直接请求删除文件。

- 公告与补丁

        暂无数据

- 漏洞信息 (F36997)

dsa-705.txt (PacketStormID:F36997)
2005-04-17 00:00:00
 
advisory,denial of service
linux,debian
CVE-2005-0256,CVE-2005-0854
[点击下载]

Debian Security Advisory 705-1 - Several denial of service conditions have been discovered in wu-ftpd, the popular FTP daemon.

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

- --------------------------------------------------------------------------
Debian Security Advisory DSA 705-1                     security@debian.org
http://www.debian.org/security/                             Martin Schulze
April 4th, 2005                         http://www.debian.org/security/faq
- --------------------------------------------------------------------------

Package        : wu-ftpd
Vulnerability  : missing input sanitising
Problem-Type   : remote
Debian-specific: no
CVE IDs        : CAN-2005-0256 CAN-2003-0854

Several denial of service conditions have been discovered in wu-ftpd,
the popular FTP daemon.  The Common Vulnerabilities and Exposures
project identifies the following problems:

CAN-2005-0256

    Adam Zabrocki discovered a denial of service condition in wu-ftpd
    that could be exploited by a remote user and cause the server to
    slow down the server by resource exhaustion.

CAN-2003-0854

    Georgi Guninski discovered that /bin/ls may be called from within
    wu-ftpd in a way that will result in large memory consumption and
    hence slow down the server.

For the stable distribution (woody) these problems have been fixed in
version 2.6.2-3woody5.

For the unstable distribution (sid) these problems have been fixed in
version 2.6.2-19.

We recommend that you upgrade your wu-ftpd package.


Upgrade Instructions
- --------------------

wget url
        will fetch the file for you
dpkg -i file.deb
        will install the referenced file.

If you are using the apt-get package manager, use the line for
sources.list as given below:

apt-get update
        will update the internal database
apt-get upgrade
        will install corrected packages

You may use an automated update by adding the resources from the
footer to the proper configuration.


Debian GNU/Linux 3.0 alias woody
- --------------------------------

  Source archives:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5.dsc
      Size/MD5 checksum:      607 78463b3882e0d32102344bb0580e0d98
    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5.diff.gz
      Size/MD5 checksum:   101661 967b719c02892c867ad0d6456a5dd47a
    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2.orig.tar.gz
      Size/MD5 checksum:   354784 b3c271f02aadf663b8811d1bff9da3f6

  Architecture independent components:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd-academ_2.6.2-3woody5_all.deb
      Size/MD5 checksum:     3484 cc6ee1aeb156077af311870f095840ab

  Alpha architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_alpha.deb
      Size/MD5 checksum:   292630 c164f9f2d0ae5d70587ca49ddbe543b4

  ARM architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_arm.deb
      Size/MD5 checksum:   265840 c86cdbc78969f755dce0facce4a1f882

  Intel IA-32 architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_i386.deb
      Size/MD5 checksum:   255216 504af14aec48191405c08a56845d330b

  Intel IA-64 architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_ia64.deb
      Size/MD5 checksum:   321932 ced4192d937ccedfa5a7ab2e9e77c378

  HP Precision architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_hppa.deb
      Size/MD5 checksum:   276624 4a1b5b6115ed1d93206c9787e8d37038

  Motorola 680x0 architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_m68k.deb
      Size/MD5 checksum:   249810 e873e950d3b234a7854ee0e4810783f5

  Big endian MIPS architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_mips.deb
      Size/MD5 checksum:   273426 364c07d6a21f8aab43b3841ce98df8c6

  Little endian MIPS architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_mipsel.deb
      Size/MD5 checksum:   273568 4e51f44342035b6ecafc624b1a6c06f3

  PowerPC architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_powerpc.deb
      Size/MD5 checksum:   268816 4072fbbb73bd8013b9a191f3aa7bd778

  IBM S/390 architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_s390.deb
      Size/MD5 checksum:   263638 d86fc84ab2974a80fd7407d826d8b003

  Sun Sparc architecture:

    http://security.debian.org/pool/updates/main/w/wu-ftpd/wu-ftpd_2.6.2-3woody5_sparc.deb
      Size/MD5 checksum:   270784 1110401bccc9035cc1b30eb8146aee18


  These files will probably be moved into the stable distribution on
  its next update.

- ---------------------------------------------------------------------------------
For apt-get: deb http://security.debian.org/ stable/updates main
For dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main
Mailing list: debian-security-announce@lists.debian.org
Package info: `apt-cache show <pkg>' and http://packages.debian.org/<pkg>

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.0 (GNU/Linux)

iD8DBQFCUVrbW5ql+IAeqTIRAj7YAJ4jaACcvzyz5FIsqndJjCo9SSD9HACgkoAY
F4qlQSHqDayJl++iAY686+k=
=yOi3
-----END PGP SIGNATURE-----

    

- 漏洞信息

14918
betaparticle upload.asp Unauthenticated File Upload
Remote / Network Access Authentication Management
Loss of Integrity
Vendor Verified

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-03-20 Unknow
2005-03-20 Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete
 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站