The OpenNET Project
 
Search (keywords):  SOFT ARTICLES TIPS & TRICKS SECURITY
LINKS NEWS MAN DOCUMENTATION


Unofficial SQL-Ledger patch for CVE-2007-0667


<< Previous INDEX Search src / Print Next >> 
Date: Mon, 05 Feb 2007 19:53:43 -0800
From: Chris Travers <chris@metatrontech.com.>
To: [email protected]
Subject: Unofficial SQL-Ledger patch for CVE-2007-0667
Content-Type: multipart/mixed;
 boundary="------------000200030108070604010201"
X-Virus-Scanned: antivirus-gw at tyumen.ru

This is a multi-part message in MIME format.
--------------000200030108070604010201
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit

This patch was made against SQL-Ledger 2.6.18 but just modifies a few 
lines in the redirect() function in the Form.pm.  I have decided that it 
is probably best to release the patch and then wait a while before 
releasing full disclosure.  The author of SQL-Ledger has declined to use 
this patch.

Best Wishes,
Chris Travers

--------------000200030108070604010201
Content-Type: text/x-patch;
 name="sl-whitelist.patch"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
 filename="sl-whitelist.patch"

diff -C3 -r sql-ledger-orig/SL/Form.pm sql-ledger/SL/Form.pm

  • sql-ledger-orig/SL/Form.pm	2007-02-05 18:20:34.000000000 -0800
--- sql-ledger/SL/Form.pm	2007-02-05 18:23:06.000000000 -0800
***************

  • 311,318 ****
  
    if ($self->{callback}) {
  
  
!     my ($script, $argv) = split(/\?/, $self->{callback});
!     exec ("perl", $script, $argv);
     
    } else {
      
      
--- 311,327 ----
  
    if ($self->{callback}) {
  
  
! 	my ($script, $argv) = split(/\?/, $self->{callback});
! 	foreach (qw/admin.pl login.pl am.pl ap.pl ar.pl bp.pl ca.pl 
! 			cp.pl ct.pl menu.pl gl.pl hr.pl ic.pl ir.pl
! 			is.pl jc.pl oe.pl pe.pl ps.pl rc.pl rp.pl/) {
! 		if ($_ =~ /(?:custom_)?$script/) {
! 			exec ("perl", $script, $argv);
! 		}
! 	}
! 	# $script not in whitelist
! 	$self->error('Access Denied!')
! 
     
    } else {
      

--------------000200030108070604010201
Content-Type: text/x-vcard; charset=utf-8;
 name="chris.vcf"
Content-Transfer-Encoding: 7bit
Content-Disposition: attachment;
 filename="chris.vcf"

begin:vcard
fn:Chris Travers
n:Travers;Chris
email;internet:[email protected]
tel;work:509-888-0220
tel;cell:509-630-7794
x-mozilla-html:FALSE
version:2.1
end:vcard


--------------000200030108070604010201--

    • << Previous INDEX Search src / Print Next >>



    Партнёры:
    PostgresPro
    Inferno Solutions
    Hosting by Hoster.ru
    Хостинг:

    Закладки на сайте
    Проследить за страницей     		Created 1996-2025 by Maxim Chirkov
    Добавить, Поддержать, Вебмастеру