HC's Capture the Flag website
CTF Contests
25C3-CTF
25C3-CTF final results
Advisory #118
From team h4ck!nb3rg
New advisory by : churchy
Affected service(s): all?
Severity [lmh] : low
===== Problem =====
the user "www-data" has write-access to the directory "/var/www/styles". if an attacker can write files to the system, some shells like a ruby shell can be stored there and smoothly executed using a browser.
===== Impact =====
see above, the directory can be used to both write an execute files and is therefore a perfect place for shells.
===== Fix =====
remove the rights for the webserver process, like this:
chown -R root /var/www/styles
Rating
[2] yapp. It's serious