CVE-2012-3399
published 2012-07-12CVE-2012-3399: Config/diff.php in Basilic 1.5.14 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.
PriorityP273high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
65.32%
99.2th percentile
Config/diff.php in Basilic 1.5.14 allows remote attackers to execute arbitrary commands via shell metacharacters in the file parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| artis.imag | basilic | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect GET requests to Config/diff.php where the 'file' parameter contains shell metacharacters such as '&' or '#', indicative of command injection attempts. ↗
- →Monitor for HTTP GET requests to /Config/diff.php with the 'file' parameter containing '&' followed by a command and a trailing '#' space-comment pattern (e.g., file=&<cmd>+#). ↗
- →The exploit requires no authentication; alert on unauthenticated access to Config/diff.php with suspicious 'file', 'new', and 'old' query parameters. ↗
- ·The Metasploit module defaults to the path '/basilic-1.5.14/' as the base URI; real-world deployments may use a different base path, requiring adjustment of detection signatures. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Basilic 1.5.14 - 'diff.php' Arbitrary Command Execution (Metasploit)
exploitdb·2012-07-09
CVE-2012-3399 Basilic 1.5.14 - 'diff.php' Arbitrary Command Execution (Metasploit)
Basilic 1.5.14 - 'diff.php' Arbitrary Command Execution (Metasploit)
---
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# web site for more information on licensing and terms of use.
# http://metasploit.com/
##
require 'msf/core'
class Metasploit3 'Basilic 1.5.14 diff.php Arbitrary Command Execution',
'Description' => %q{
This module abuses a metacharacter injection vulnerability in the
diff.php script. This flaw allows an unauthenticated attacker to execute arbitrary
commands as the www-data user account.
},
'Author' =>
[
'lcashdollar',
'sinn3r',
'juan'
],
'License' => MSF_LICENSE,
'References' =>
[
[ 'BID', '54234' ]
],
'Platform' => ['linux', 'unix'],
'Arch' => ARCH_CMD,
'Privileged' =>
Metasploit
Basilic 1.5.14 diff.php Arbitrary Command Execution
metasploit
Basilic 1.5.14 diff.php Arbitrary Command Execution
Basilic 1.5.14 diff.php Arbitrary Command Execution
This module abuses a metacharacter injection vulnerability in the diff.php script. This flaw allows an unauthenticated attacker to execute arbitrary commands as the www-data user account.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2012-07/0002.htmlhttp://archives.neohapsis.com/archives/bugtraq/2012-07/0043.htmlhttp://www.exploit-db.com/exploits/19631http://www.openwall.com/lists/oss-security/2012/07/09/4http://www.openwall.com/lists/oss-security/2012/07/10/1http://www.securityfocus.com/bid/54234https://exchange.xforce.ibmcloud.com/vulnerabilities/76667http://archives.neohapsis.com/archives/bugtraq/2012-07/0002.htmlhttp://archives.neohapsis.com/archives/bugtraq/2012-07/0043.htmlhttp://www.exploit-db.com/exploits/19631http://www.openwall.com/lists/oss-security/2012/07/09/4http://www.openwall.com/lists/oss-security/2012/07/10/1http://www.securityfocus.com/bid/54234https://exchange.xforce.ibmcloud.com/vulnerabilities/76667
2012-07-12
Published