#2475 closed defect (invalid)
[INVALID] ImageField allows exploit. It does not catch commands. rm -rf * succeeds
| Reported by: | Owned by: | Adrian Holovaty | |
|---|---|---|---|
| Component: | Validators | Version: | |
| Severity: | trivial | Keywords: | |
| Cc: | Triage Stage: | Unreviewed | |
| Has patch: | no | Needs documentation: | no |
| Needs tests: | no | Patch needs improvement: | no |
| Easy pickings: | no | UI/UX: | no |
Description
Entering "rm -rf *" into an upload field in the admin backend works, the command get's executed sucessfull.
Attachments (3)
Change History (8)
comment:1 by , 18 years ago
| Resolution: | → invalid |
|---|---|
| Severity: | blocker → trivial |
| Status: | new → closed |
comment:2 by , 18 years ago
comment:3 by , 18 years ago
changed to invalid. I had looked at two files in two different installations ond different hosts, which messed up my data. sry for the trouble
comment:4 by , 18 years ago
| Summary: | ImageField allows exploit. It does not catch commands. rm -rf * succeeds → [INVALID] ImageField allows exploit. It does not catch commands. rm -rf * succeeds |
|---|
I've modified the title of this to make sure that nobody confuses this for an actual exploit. Please in the future report any potential security problems to security@… instead of using the public ticket tracker.
by , 17 years ago
| Attachment: | fusion.gif added |
|---|
by , 11 years ago
Note:
See TracTickets
for help on using tickets.
We've reason to suspect that this report is fradulent. We're following up with the reporting and by auditing the code anyway, however.