OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
[SA16868] phpBB Remote Avatar Information Disclosure Weakness

From: Secunia Security Advisories (sec-advsecunia.com)
Date: Wed Sep 21 2005 - 04:08:43 CDT


----------------------------------------------------------------------

Bist Du interessiert an einem neuen Job in IT-Sicherheit?

Secunia hat zwei freie Stellen als Junior und Senior Spezialist in IT-
Sicherheit:
http://secunia.com/secunia_vacancies/

----------------------------------------------------------------------

TITLE:
phpBB Remote Avatar Information Disclosure Weakness

SECUNIA ADVISORY ID:
SA16868

VERIFY ADVISORY:
http://secunia.com/advisories/16868/

CRITICAL:
Not critical

IMPACT:
Exposure of system information

WHERE:
From remote

SOFTWARE:
phpBB 2.x
http://secunia.com/product/463/

DESCRIPTION:
A weakness has been discovered in phpBB, which can be exploited by
malicious people to disclose certain system information.

The weakness is caused due to the application allowing users to use
external files as avatars. This can be exploited to gather
information (e.g. IP addresses, browser types) of other users, who
view a forum post containing an external avatar image.

Successful exploitation requires that support for remote avatars is
enabled (not default setting).

The weakness has been confirmed in version 2.0.17. Other versions may
also be affected.

SOLUTION:
Disable remote avatars in the "Avatar Settings".

----------------------------------------------------------------------

About:
This Advisory was delivered by Secunia as a free service to help
everybody keeping their systems up to date against the latest
vulnerabilities.

Subscribe:
http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.)
http://secunia.com/about_secunia_advisories/

Please Note:
Secunia recommends that you verify all advisories you receive by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.

----------------------------------------------------------------------

Unsubscribe: Secunia Security Advisories

----------------------------------------------------------------------