Web-APP.org Articles : Bugs : Topics.pl Security Fix - For Immediate Release

Topics.pl Security Fix - For Immediate Release

Published on Aug 24 2004 at 13:28 GMT. Written by Ditto.

I've added a new download section for Bugs / Security Fixes.

This particular one can not wait for a new version.

Link:

http://cornerstone.web-app.org/cgi-bin/index.cgi?action=downloads&cat=updates

The current topics.pl file is allowing for directory traversal. The bug was found and fixed ages ago, but with the conversion confusion files may have been lost/changed, and the traversal bug once again reared its ugly head.

Make sure you back up your old file first. The change is minor, and it only adds a small check and the check is found in the sub topics section.

Please pass this information along. I will also be posting on the main front page.

Printer Friendly version - Topics.pl Security Fix - For Immediate Release

(2158 reads)

There are 3 articles in this category. See all articles by Ditto or all articles in Bugs

Comments on this article:

Topics.pl Security Fix - For Immediate Release | 14 comments | | Sign Up

The comments are owned by the poster. We aren't responsible for its content.
Only registered members may comment on articles.

ModAPP

Written on 08/27/04 at 16:47:44 GMT by On

Ditto hi!

Is it possible to add also a ModAPP section somewhere? seems like many users became experts in the new version but thier contributions are spread everywhere from chitchat to support forums!

Sorry for giving a headache about it!

On :)
I am not sure I get this 100%

Written on 08/29/04 at 14:37:56 GMT by Jack Deth

I note it says its for 0.9.9

Is it also for 0.9.9.1???

:)
Welcome back Jack!

Written on 08/29/04 at 21:35:24 GMT by On

Havent seen you for ages!

I suggest that you ask chick for the exact code.
ask me?

Written on 09/01/04 at 04:22:39 GMT by bantychick

well okay you can ask me, especially in a few minutes since it suddenly seems important to add this : Z

It shouldn't affect either version in any bad way.
For 9.9.1

Written on 09/01/04 at 04:40:58 GMT by bantychick

It has "release" instead of "unlock".
It helps but here is one more thing

Written on 09/01/04 at 17:50:33 GMT by On

It prevents users from abusing your topic sub to access different db folders (folders climbing).

But I am afraid that one can do it with many other excuters too..

Whatever read this:

http://cornerstone.web-app.org/cgi-bin/index.cgi?action=forum&board=Welcome&op=display&num=7045

It will stop hackers that are using scripts for scanning cgi and excuting these commands.
I wanted to apply this but . .

Written on 09/02/04 at 09:35:10 GMT by Jane

My topics was somewhat hacked.

I found a solution though a free program called WinMerge which compared the two files so I could spot the fixes and add them to my topics.pl
KUDOS!

Written on 09/02/04 at 17:03:53 GMT by DenDen33

GOOD JOB CARTER!
Security Fix for 0.9.9

Written on 09/03/04 at 04:41:29 GMT by john-gr

download here:
http://www.omypae.gr/topics.zip

this file is for 0.9.9
A simple solution

Written on 09/03/04 at 10:01:53 GMT by On

Add this to your index.cgi

elsif ($action =~ m{/../}) { require "$sourcedir/subs.pl"; banme(); }

A more advanced script that would:
1.) Automaticly ban the hacker.
2.) Let you add domain host bans, example *.web-app.org in addition to the usuall ip bans (ineffective on dynamic ip).
3.) Bans autoamticly hackers that run cgi/port scanners on you site.

Can be found here with complete instructions:

http://www.mlapp.org/scripts/cgi.lib.subs.pl.sub.ban.patch.txt

On
simple solution

Written on 09/03/04 at 10:03:25 GMT by On

yach..

This is the line:

elsif ($action =~ m{/../}) { exit; }

The other one would work too but would give a different error! lol
and...

Written on 09/04/04 at 12:12:46 GMT by On
OBS! Add this hack by abywn to your index.cgi: abywn.txt (see instructions there!).
To be able to add domain bans against hackers on your site and to ban cgi/port scaners
on your site read this and follow instructions carefully: cgi.lib.subs.pl.sub.ban.patch.txt
Error on HOLD

Written on 09/08/04 at 01:25:02 GMT by Loser

I uploaded the new topics.pl (I'm running 0.9.9 and it gave me errors on every line that had HOLD or Release. Any suggestion?
Version conflict

Written on 10/02/04 at 08:50:03 GMT by On

Please read again about the fix:

Hackers alert?
For non hacked clean new Web-APP versions: use =>Carter’s patch.
For new hacked Web-APP versions use=>Anton’s patch.
For both hacked and non hacked Web-APP versions use =>abywns patch.
For extra security: change your "members" folder's name (this you can do at the admin control panel under "Site Configuration”, afterward dont forget to ftp to change folder name! "members" to "s0mth1ng_d1ff1cult_2_gu3ss").
For being able to add domain bans and to protect against hackers using cgi and port scaners use =>my sub ban patch.

Explanation:
By “hacked version” I mean to a version in which the topics.pl has been altered since it was first installed. If this is the case kindly do not forget to add the patch/es also to your user-lib/ files.
You may use all the patches, some of them or none of them (that is if you have an old version). There is no known conflict between them and the first 4 alternatives on the list above should each for it self be good enough to handle the security issue.)

Topics | Articles | Top Reads | Vote for Stories

Settings

Main Menu

Support

Translations

Development

News

Log In

Online Now

Recent Discussions