HTTP: FormMail File Inclusion
This signature detects attempts to exploit a known vulnerability in FORMMAIL. Attackers can include arbitrary files to obtain sensitive information.
Extended Description
It has been reported that it is possible for a remote attacker to obtain any file on the filesystem that is readable by the webserver process corresponding to their session. The "ar_file" variable specifies a file to be included in the outgoing e-mail message. It is possible for an attacker to specify any file by using its relative path. As the recipient of the e-mail message is specified by the client, any file on the filesystem accessible to the server process can be sent to any remote e-mail address.
Affected Products
Joe_lumbroso jack's_formmail.php
Short Name
HTTP:PHP:FORMMAIL-INCLUDE
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2004-1431 File FormMail Inclusion bid:12145
Release Date
03/18/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Joe_lumbroso
CVSS Score
5.0