Signature Detail

Short Name	HTTP:CGI:HASSAN-DIR-TRAVERSAL
Severity	Medium
Recommended	No
Category	HTTP
Keywords	Hassan Consulting Shopping Cart Directory Traversal
Release Date	2003/04/22
Update Number	1213
Supported Platforms	di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Hassan Consulting Shopping Cart Directory Traversal

This signature detects attempts to exploit a vulnerability in the Hassan shopping cart script shop.cgi. Attackers can access arbitrary system files.

Extended Description

The $page variable in Hassan Consulting Shopping Cart does not properly check for insecure relative paths such as the double dot "..". Therefore, requesting the following URL will display the specified file: http://target/cgi-bin/shop.cgi/page=../../../path/filename.ext Successful exploitation could lead to a remote intruder gaining read access to any known file.

Affected Products

Hassan Consulting Shopping Cart 1.18.0

References

BugTraq: 1777
CVE: CVE-2000-0921

Signature Detail

Short Name

Severity

Recommended

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Hassan Consulting Shopping Cart Directory Traversal

Extended Description

Affected Products

References