Go to main content

Textpattern CMS support forum

You are not logged in. Register | Login | Help

#1 2010-10-01 00:08:59

aba
Plugin Author
Registered: 2004-04-14
Posts: 119

2 questions

1. Does 4.3 include a fix for this vulnerability ?
2. If the carver is now retired according to HISTORY.TXT, shouldn’t 2.gif from the sample site not be changed as well?

Thanks

Offline

#2 2010-10-01 00:34:55

jsoo
Plugin Author
From: NC, USA
Registered: 2004-11-15
Posts: 1,793
Website

Re: 2 questions

  1. You have to be logged in for that include to happen. The “exploit” does not appear to have any supporting evidence.
  2. Previously noted.

Edit: I was curious enough to check it out a little more. Even if you’re logged in there is the require_privs check, which would prevent this line from including a file outside Txp.

Last edited by jsoo (2010-10-01 01:06:40)


Code is topiary

Offline

#3 2010-10-01 01:46:02

Gocom
Developer Emeritus
From: Helsinki, Finland
Registered: 2006-07-14
Posts: 4,533
Website

Re: 2 questions

Indeed. Jeff is correct. There is nothing to fix as far as I’m aware.

Offline

#4 2010-10-01 08:39:38

aba
Plugin Author
Registered: 2004-04-14
Posts: 119

Re: 2 questions

thanks for confirming that there is no threat.

Offline

#5 2010-10-05 17:12:17

jsoo
Plugin Author
From: NC, USA
Registered: 2004-11-15
Posts: 1,793
Website

Re: 2 questions

I did a bit of follow-up on this. I did at least get a comment accepted on the OSVDB listing. I also got a reply from nist.gov and am following up with mitre.org.


Code is topiary

Offline

Board footer

Powered by FluxBB