AutoLinks Pro 'al_initialize.php alpath Parameter Remote File Inclusion

medium Nessus Plugin ID 19522

Synopsis

The remote web server contains a PHP script that suffers from a remote file include flaw.

Description

The remote host is running AutoLinks Pro, a commercial link management package.

The version of AutoLinks Pro installed on the remote host allows attackers to control the 'alpath' parameter used when including PHP code in the 'al_initialize.php' script. By leveraging this flaw, an unauthenticated attacker is able to view arbitrary files on the remote host and to execute arbitrary PHP code, possibly taken from third- party hosts.

Solution

Unknown at this time.

Plugin Details

Severity: Medium

ID: 19522

File Name: autolinks_alpath_file_include.nasl

Version: 1.17

Type: remote

Family: CGI abuses

Published: 8/29/2005

Updated: 1/19/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.1

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Temporal Score: 6.5

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P

Vulnerability Information

Required KB Items: www/PHP

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: No exploit is required

Vulnerability Publication Date: 8/28/2005

Reference Information

CVE: CVE-2005-2782

BID: 14686