Uploaded image for project: ' AGL Development'
  1. AGL Development
  2. SPEC-5092

Directory and file list can be exposed by bypassing access control of the 'listfiles' command in a media player

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Audio Manager
    • None
    • Raspberry Pi4
    • Raspberry Pi 4

       

       

       

      The "listfiles" command has a vulnerability that allows it to list directories and files.

      If the path begins with '/', the list is rejected with 'Access denied',
      but if the path begins with '..', the filter can be bypassed.

      So, anyone can see the all files in the system.
      It's a kind of information leak vulnerability.

       

       

      I checked it in Raspberry Pi4 and the 16.92.0

        1. 4.png
          4.png
          73 kB
        2. 5.png
          5.png
          107 kB
        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            scottm Scott Murray
            JonghyukSong Jonghyuk Song
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: