phpGroupWare path disclosure

phpgroupware-path-disclosure (18497) The risk level is classified as LowLow Risk

Description:

Joseph Engo's phpGroupWare could allow a remote attacker to obtain sensitive information. A remote attacker could send a specially-crafted HTTP request to a vulnerable script to cause the full installation path of phpGroupWare to be disclosed.

Platforms Affected:

  • Gentoo, Linux
  • Joseph Engo, phpGroupWare 0.9.16.003 and prior

Remedy:

For Gentoo Linux:
Refer to Gentoo Linux Security Announcement GLSA 2005-01-08 for patch, upgrade, or suggested workaround information. See References.

Consequences:

Obtain Information

References:

  • BugTraq Mailing List, Tue Dec 14 2004 - 21:15:17 CST, Multiple phpGroupWare Vulnerabilities [ phpGroupWare 0.9.16.003 && Earlier ] at http://archives.neohapsis.com/archives/bugtraq/2004-12/0155.html.
  • BID-12082: PHPGroupWare Index.PHP HTML Injection Vulnerability
  • CVE-2004-1385: phpGroupWare 0.9.16.003 and earlier allows remote attackers to gain sensitive information via (1) unexpected characters in the session ID such as shell metacharacters, (2) an invalid appname parameter to preferences.php or (3) an invalid menuaction parameter to index.php, which reveals the web server path in an error message.
  • CVE-2004-2574: Cross-site scripting (XSS) vulnerability in index.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to inject arbitrary web script or HTML via the date parameter in a calendar.uicalendar.planner menuaction.
  • CVE-2004-2575: phpGroupWare 0.9.14.005 and earlier allow remote attackers to obtain sensitive information via a direct request to (1) hook_admin.inc.php, (2) hook_home.inc.php, (3) class.holidaycalc.inc.php, and (4) setup.inc.php.sample, which reveals the path in an error message.
  • GLSA-200501-08: phpGroupWare: Various vulnerabilities
  • OSVDB ID: 7600: phpGroupWare index.php Calendar Date Variable XSS
  • OSVDB ID: 7601: phpGroupWare setup.inc.php.sample Path Disclosure
  • OSVDB ID: 7602: phpGroupWare class.holidaycalc.inc.php Path Disclosure
  • OSVDB ID: 7603: phpGroupWare hook_home.inc.php Path Disclosure
  • OSVDB ID: 7604: phpGroupWare hook_admin.inc.php Path Disclosure

Reported:

Dec 15, 2004

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page