Gentoo Logo

DokuWiki: Local file inclusion

Content:

1.  Gentoo Linux Security Advisory

Version Information

Advisory Reference GLSA 200908-09 / dokuwiki
Release Date August 18, 2009
Latest Revision August 19, 2009: 02
Impact high
Exploitable remote
Package Vulnerable versions Unaffected versions Architecture(s)
www-apps/dokuwiki < 20090214b >= 20090214b All supported architectures

Related bugreports: #272431

Synopsis

An input sanitation error in DokuWiki might lead to the dislosure of local files or even the remote execution of arbitrary code.

2.  Impact Information

Background

DokuWiki is a standards compliant Wiki system written in PHP.

Description

girex reported that data from the "config_cascade" parameter in inc/init.php is not properly sanitized before being used.

Impact

A remote attacker could exploit this vulnerability to execute PHP code from arbitrary local, or, when the used PHP version supports ftp:// URLs, also from remote files via FTP. Furthermore, it is possible to disclose the contents of local files. NOTE: Successful exploitation requires the PHP option "register_globals" to be enabled.

3.  Resolution Information

Workaround

Disable "register_globals" in php.ini.

Resolution

All DokuWiki users should upgrade to the latest version:

Code Listing 3.1: Resolution

# emerge --sync
# emerge --ask --oneshot --verbose ">=www-apps/dokuwiki-2009-02-14b"

4.  References

Print

Page updated August 18, 2009

Summary: This is a Gentoo Linux Security Advisory

Security Team
Contact Address

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.