FreeBSD : dokuwiki -- spellchecker remote PHP code execution (af8dba15-f4cc-11da-87a1-000c6ec775d9)

This script is Copyright (C) 2006-2013 Tenable Network Security, Inc.


Synopsis :

The remote FreeBSD host is missing a security-related update.

Description :

Stefan Esser reports :

During the evaluation of DokuWiki for a german/korean wiki of mine a
flaw in DokuWiki's spellchecker was discovered, that allows injecting
arbitrary PHP commands, by requesting a spellcheck on PHP commands in
'complex curly syntax'.

Because the spellchecker is written as part of the AJAX functionality
of DokuWiki, it can be directly called by any website visitor, without
the need for a wiki account.

See also :

http://www.hardened-php.net/advisory_042006.119.html
http://bugs.splitbrain.org/index.php?do=details&id=823
http://www.nessus.org/u?44000307

Solution :

Update the affected package.

Risk factor :

High

Family: FreeBSD Local Security Checks

Nessus Plugin ID: 21648 (freebsd_pkg_af8dba15f4cc11da87a1000c6ec775d9.nasl)

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now