RiSearch show.pl allows open proxy
| risearch-show-open-proxy (16817) |  Medium Risk |
Description:
RiSearch is a set of freely available PERL scripts for searching Web sites for Microsoft Windows, Unix and Linux platforms. RiSearch version 1.0.01 and RiSearch Pro version 3.2.06 running on Microsoft Windows 2000 could allow a remote attacker to use RiSearch as an open proxy server. A remote attacker could send a specially-crafted HTTP request to the show.pl script to view arbitrary files, Web sites and directory listings.
Platforms Affected:
- S.Tarasov, RiSearch 1.0.01
- S.Tarasov, RiSearch Pro 3.2.06
Remedy:
No remedy available as of July 2004.
Consequences:
Obtain Information
References:
- IRM Security Advisory No. 009, RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities at http://www.irmplc.com/advisories.htm.
- BID-10812: RiSearch/RiSearch Pro Open Proxy Vulnerability
- CVE-2004-2061: RiSearch 1.0.01 and RiSearch Pro 3.2.06 allows remote attackers to use the show.pl script as an open proxy, or read arbitrary local files, by setting the url parameter to a (1) http://, (2) ftp://, or (3) file:// URL.
- OSVDB ID: 8265: RiSearch show.pl Open Proxy Relay
- OSVDB ID: 8266: RiSearch show.pl Arbitrary File Access
- SA12173: RiSearch Open Proxy Relay Vulnerability
- SECTRACK ID: 1010788: RiSearch/Ri Search Pro Discloses Files to Remote Users and Can Be Used as an Open Proxy
Reported:
Jul 27, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net