Title: Jason Maloney's Guestbook Remote Command Execution Vulnerability
Severity: HIGH
Description:
Jason Maloney's Guestbook is a CGI web guestbook application.
A vulnerability has been reported in Jason Maloney's Guestbook that could result in remote command execution with the privileges of the web server. The problem occurs due to the application failing to sanitize sensitive script variables after handling POST requests. Specifically, the $mailprog, $entry, $allow, and $date_command are able to be influenced by an attacker. The $mailprog and $date_command each point to system executables and are used to execute commands.
An attacker who is capable of influencing the contents of these variables may be capable of executing arbitrary system commands with the privileges of the web server. This could ultimately lead to arbitrary code execution.
This issue is said to affect release 3.0, however earlier versions are likely vulnerable as well.
Conflicting reports have been received alleging that this issue is not in fact a vulnerability and that it is not possible to influence the reportedly vulnerable variables.
Affected Products:
- Jason Maloney Guestbook 3.0.0
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
