Uploaded image for project: ' AGL Development'
  1. AGL Development
  2. SPEC-5092

Directory and file list can be exposed by bypassing access control of the 'listfiles' command in a media player

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Major Major
    • None
    • None
    • Audio Manager
    • None
    • Raspberry Pi4
    • Raspberry Pi 4

       

       

       

      The "listfiles" command has a vulnerability that allows it to list directories and files.

      If the path begins with '/', the list is rejected with 'Access denied',
      but if the path begins with '..', the filter can be bypassed.

      So, anyone can see the all files in the system.
      It's a kind of information leak vulnerability.

       

       

      I checked it in Raspberry Pi4 and the 16.92.0

        1. 4.png
          73 kB
          Jonghyuk Song
        2. 5.png
          107 kB
          Jonghyuk Song
        No reviews matched the request. Check your Options in the drop-down menu of this sections header.

            scottm Scott Murray
            JonghyukSong Jonghyuk Song
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated: