ePerl: bad handling of ISINDEX queries

• Previous message: Solar Designer: "Re: SmurfLog 1.0"
• Next in thread: Andrew Pimlott: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Andrew Pimlott: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Steve Willer: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Tiago Luz Pinto: "Re: ePerl: bad handling of ISINDEX queries"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    (ePerl is an embedded Perl Interpreter for HTTP servers)

* Description:
    Incorrect Handling of ISINDEX queries (command line argument)
when ePerl runs as a nph-cgi/cgi.

* Cause:
    According with the CGI/1.1 specification, the HTTP
server executes CGI's passing the ISINDEX field as a command
line argument. When ePerl runs and gets this argument
(argc > 1), it fails to set MODE_CGI, then tries to
open the argument for parsing/executing.

    This can lead to arbitrary Perl code being executed on
the server.

* Example:
http://foo.com/some/dir/doit.phtml?/home/ftp/incoming/executemycode.phtml


+----------------------------------------------------------------------+
|  Tiago Luz Pinto                                 tiagoat_private   |
|                                                                      |
|  Network Administrator  -      Department of Production Engineering  |
|  Federal University of Santa Catarina -                      Brazil  |
+----------------------------------------------------------------------+

• Next message: Lamont Granquist: "port 0 scanning"
• Previous message: Solar Designer: "Re: SmurfLog 1.0"
• Next in thread: Andrew Pimlott: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Andrew Pimlott: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Steve Willer: "Re: ePerl: bad handling of ISINDEX queries"
• Reply: Tiago Luz Pinto: "Re: ePerl: bad handling of ISINDEX queries"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:02:16 PDT