#2475 closed defect (invalid)
[INVALID] ImageField allows exploit. It does not catch commands. rm -rf * succeeds
Reported by: | Owned by: | Adrian Holovaty | |
---|---|---|---|
Component: | Validators | Version: | |
Severity: | trivial | Keywords: | |
Cc: | Triage Stage: | Unreviewed | |
Has patch: | no | Needs documentation: | no |
Needs tests: | no | Patch needs improvement: | no |
Easy pickings: | no | UI/UX: | no |
Description
Entering "rm -rf *" into an upload field in the admin backend works, the command get's executed sucessfull.
Attachments (3)
Change History (8)
comment:1 by , 18 years ago
Resolution: | → invalid |
---|---|
Severity: | blocker → trivial |
Status: | new → closed |
comment:2 by , 18 years ago
comment:3 by , 18 years ago
changed to invalid. I had looked at two files in two different installations ond different hosts, which messed up my data. sry for the trouble
comment:4 by , 18 years ago
Summary: | ImageField allows exploit. It does not catch commands. rm -rf * succeeds → [INVALID] ImageField allows exploit. It does not catch commands. rm -rf * succeeds |
---|
I've modified the title of this to make sure that nobody confuses this for an actual exploit. Please in the future report any potential security problems to security@… instead of using the public ticket tracker.
by , 17 years ago
Attachment: | fusion.gif added |
---|
by , 12 years ago
Note:
See TracTickets
for help on using tickets.
We've reason to suspect that this report is fradulent. We're following up with the reporting and by auditing the code anyway, however.