DaemonForums  

Go Back   DaemonForums > DaemonForums.org > News
Reload this Page Mailing list application Majordomo 2 reveals file content
FAQ Search Today's Posts Mark Forums Read

News News regarding BSD and related.

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 3rd February 2011
J65nko J65nko is online now
Administrator
  
Join Date: May 2008
Location: Budel - the Netherlands
Posts: 2,802
Thanked 182 Times in 149 Posts
Default Mailing list application Majordomo 2 reveals file content
From http://www.h-online.com/security/new...t-1183034.html

Quote:
A bug in the way path names are evaluated means that it is possible to view the content of arbitrary files on a Majordomo mailing list system using the help command. The vulnerability can be exploited via both the web and email interfaces in Mojordomo2. According to a security advisory, simply sending an email with the content help ../../../../../../../../../../../../../etc/passwd to the Majordomo account is sufficient to receive a response containing the content of the /etc/password file. The bug is fixed in snapshot versions majordomo-20110125 (direct download) and later.)
__________________
You don't need to be a genius to debug a pf.conf firewall ruleset, you just need the guts to run tcpdump
Last edited by J65nko; 3rd February 2011 at 07:56 PM. Reason: Stressing it is Majordomo 2 (thanks jggimi )
Reply With Quote
  #2   (View Single Post)  
Old 3rd February 2011
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
  
Join Date: May 2008
Location: USA
Posts: 2,995
Thanked 214 Times in 189 Posts
Default
Clarification: This is for Majordomo 2, an "upwardly compatible rewrite" of the original Majordomo ... and does not apply to the original Majordomo.

The original is what is in the OpenBSD ports tree (mail/majordomo). It had a patch just yesterday, but entirely unrelated. The patch was for a regression caused by Perl 5.12.

I just tested this vulnerability with the original Majordomo, in a 17 day old -current. No response from the example exploit string via Email.
__________________
OpenBSD LiveCDs/LiveDVDs
Reply With Quote
Reply

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Hybrid Mode Hybrid Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
How to forward OpenBSD mailing list? fender0107401 OpenBSD General 2 12th December 2010 02:56 PM
OpenBSD misc mailing list troll J65nko Off-Topic 11 6th November 2010 07:07 PM
OpenBSD clarifying the role of OpenBSD's tech@ mailing list ocicat News 0 28th August 2010 04:54 AM
OpenBSD mailing list Mr-Biscuit Off-Topic 4 2nd May 2010 04:06 PM
Web content filtering Crypt FreeBSD Security 14 14th December 2008 01:38 PM


All times are GMT. The time now is 07:59 AM.

DaemonForums.org RSS Feeds - Contact Us - DaemonForums.org - Archive - Privacy Statement - Top

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2013, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick