Bug #9731: Path Traversal vulnerability in picture widget - pfSense - pfSense bugtracker

Actions

Copy link

Bug #9731

closed

Path Traversal vulnerability in picture widget

Added by Anonymous over 4 years ago. Updated about 4 years ago.

Status:

Duplicate

Priority:

Normal

Assignee:

Category:

Dashboard

Target version:

2.4.5

Start date:

09/06/2019

Due date:

% Done:

100%

Estimated time:

Plus Target Version:

Release Notes:

Affected Version:

All

Affected Architecture:

Description

Vulnerability Description :- The `pfSense` firewall is vulnerable to Remote Code Execution due to `Path Traversal vulnerability`. The file `picture.widget.php` improperly handles `path traversal characters` when uploading an image.

An authenticated remote attacker can exploit this vulnerability by changing the upload file name with traversal characters such as (../) & also replacing the image content with a PHP code inside, along with a valid image header (GIF89a).

History
Notes
Property changes
Associated revisions

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

pfSense

Custom queries

Bug #9731

Path Traversal vulnerability in picture widget

Updated by Anonymous over 4 years ago

Updated by Anonymous over 4 years ago

Updated by Jim Pingle over 4 years ago

Updated by Jim Pingle over 4 years ago

Updated by Jim Pingle about 4 years ago