[3/5] Bitflu StorageFarabDb Security Bypass Vulnerability
December 27th, 2007 by 
[3/5] Bitflu StorageFarabDb Security Bypass Vulnerability
:A vulnerability has been reported in Bitflu, which can be exploited by malicious people to bypass certain security restrictions.The vulnerability is caused due to the improper handling of ".torrent" files within the StorageFarabDb module. This can be exploited to create new files or to append data to existing files outside the working directory.The vulnerability is reported in versions prior to 0.42.Solution:Update to version 0.42.http://bitflu.workaround.ch/dload.htmlProvided and/or discovered by:Reported by the vendor.Original Advisory:http://bitflu.workaround.ch/ChangeLog.txt
Original post by sonia
[3/5] Bitflu StorageFarabDb Security Bypass Vulnerability
Related Articles:
[1/5] IBM OS/400 TCP Packet Processing Security Bypass Issue [2/5] Websense User-Agent Filtering Bypass Security Issue [2/5] D-Bus “send_interface” Security Policy Bypass [2/5] MoinMoin Security Bypass Vulnerabilities [2/5] Xlight FTP Server LDAP Blank Password Security Bypass
Posted in Advisories - Exploits | 
| [3/5] Bitflu StorageFarabDb Security Bypass Vulnerability