View Issue Details
ID | Project | Category | View Status | Date Submitted | Last Update |
---|---|---|---|---|---|
0000148 | Main CAcert Website | GPG/PGP | public | 2006-03-04 13:01 | 2013-01-13 17:01 |
Reporter | Assigned To | ||||
Priority | normal | Severity | minor | Reproducibility | always |
Status | closed | Resolution | fixed | ||
Fixed in Version | 2006 | ||||
Summary | 0000148: site shouldn't rely on magic_quotes_gpc turned on | ||||
Description | If you submit the following as a gpg CSR /tmp\\"; touch /tmp/OWNED \\" it is extended to /tmp\\\\\"; touch /tmp/OWNED \\\\\" by the magic_quotes_gpc function of php. Although this saves us I still consider it as a minor risk to the security of the server. If magic_quotes would accidently been turned off an attacker could execute shell commands with the rights of the webserver. Using addslashes() together with get_magic_quotes_gpc() should keep the CSR intact and the server secure. | ||||
Tags | No tags attached. | ||||
Reviewed by | |||||
Test Instructions | |||||
related to | 0000245 | closed | Shell escape |
Date Modified | Username | Field | Change |
---|---|---|---|
2006-03-04 13:01 |
|
New Issue | |
2006-05-28 21:51 |
|
Relationship added | related to 0000245 |
2006-08-14 02:56 | duane | Status | new => closed |
2006-08-14 02:56 | duane | Note Added: 0000399 | |
2006-08-14 02:56 | duane | Resolution | open => fixed |
2013-01-13 17:01 | Werner Dworak | Fixed in Version | => 2006 |