Web Shopper Remote File Retrieval Network Vulnerability

Summary

Byte's Interactive Web Shopper (shopper.cgi) allows for retrieval of arbitrary files from the web server. Both Versions 1.0 and 2.0 are affected. Example: GET /cgi-bin/shopper.cgi?newpage=../../../../etc/passwd will return /etc/passwd.

Solution

Uncomment the #$debug=1 variable in the script so that it will check for, and disallow, viewing of arbitrary files.

Severity

Classification

CVE CVE-2000-0922
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Boa file retrieval
Avaya IP Office Manager TFTP Server Directory Traversal Vulnerability
HTTP Directory Traversal (Windows)
Samba Root File System Access Security Vulnerability
LDAP allows null bases

Web Shopper remote file retrieval

Take action and discover your vulnerabilities